Iain, I don't think session sharing is easy, but you can implement login using cookies, which will be shared if they come from the same server (or domain if they are domain cookies).
Another alternative is to pass a session id in the URL, and store session information yourself in a server persistent object. If you write a singleton class and put it in a jar under Tomcat/common/lib, instances will be shared between webapps (on Tomcat Version 4.0.3 anyway). Of course, you can also write session information to a database. When a user logs in, generate a unique key, write this into a "Logins" table as the primary key, plus other information like time of login, time of last access etc. When you get a request, check the cookie id against this table to see if the user is logged in and their session hasn't expired. If so, update the time of last access. Of course, non of these are as easy or efficient as the off the shelf sessions, but all are valid ways of achieving what you want. All the best, Andy > -----Original Message----- > From: Iain Downie [mailto:[EMAIL PROTECTED]] > Sent: 08 July 2002 15:12 > To: [EMAIL PROTECTED] > Subject: Feasibility question > > > Hi List, > > relatively new to Tomcat, so excuse the possible repetition / naivety of > this posting. We currently have an expanding web application > running. We are > thinking of dividing it up into more user-friendly chunks (different > applications), allowing us to control each application more > easily (stop one > without affecting others etc.). My question is, is it possible to pass > session info between many different applications? > > For example, these are our surveys, which we want as different apps. > 1. Login and generic registration > 2. Spring birdwatch > 3. Garden birdwatch > 4. Other survey and so on. > They will all be attached to one Oracle installation. > > Currently, 1 and 2 are combined, so no problem with session info. > But is it > possible to transfer the user details between these apps, so that someone > who is in Spring, can move over to Garden without having to login again? > > I'm not looking for the solution (for now), just to know if it is possible > or not. > > Thanks, hope someone can suggest some pointers > Iain > > > -- > To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
