Alexander Khoo wrote: > Hi, > > 1) user access http://www.xyz.com -login page appear & user key in username > & password > > 2) http://www.xyz.com/CheckRule.do ( "CheckRule.do is a action our > programmer created to hide the jsessionid) -wellcome page show > > 3) http://www.xyz.com//MemberAgreeRule.do - member page show > > 4) click "CTRL N" or "click FILE > NEW > WINDOWS & another browser with > http://www.xyz.com/MemberAgreeRule.do link will show,in this stage the new > browser will show "Page Has Expire" but when you click refresh the page is > back into business again. > > Regards, > Alexander Khoo
<spec-quote> SRV.7.7.3 Client Semantics Due to the fact that cookies or SSL certificates are typically controlled by the Web browser process and are not associated with any particular window of the browser, requests from all windows of a client application to a servlet container might be part of the same session. For maximum portability, the Developer should always assume that all windows of a client are participating in the same session. </spec-quote> For what it is worth, depending on how you open IE it does, or doesn't start a new process. If you get a new process, you should get a new session. Use task manager, or similar, to monitor. Mark --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]