The following is a pretty good, even if ugly, article on session ids, Frank. Very comprehensive and it should cover in some part whatever you are working on:
http://www.technicalinfo.net/papers/WebBasedSessionManagement.html On 5/31/05, Frank W. Zammetti <[EMAIL PROTECTED]> wrote: > This might seem bizarre, but... > > Assume that a request contains a session ID as a parameter. Is there a > way *programmatically* to validate that session ID? > > In other words, the query string contains the session ID, and in a servlet > I need to be able to ask the container if it is valid or not. But, for > reasons that would probably make your head spin if I explained, I cannot > simply allow the container to do it, I need to be able to do it from my > own code. > > Moreover, this can't be a Tomcat-specific solution. > > Any takers? :) > > -- > Frank W. Zammetti > Founder and Chief Software Architect > Omnytex Technologies > http://www.omnytex.com > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > -- "You can lead a horse to water but you cannot make it float on its back." ~Dakota Jack~ --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]