You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Srinadh Karumuri <sk...@bbn.com> on 2002/08/29 16:27:01 UTC
session tracking using URL rewriting & META=refresh
Hi,
I know there are two ways of session tracking in Tomcat 3.
1. Cookies based: This is out of question as our customers do not want this.
2. URL rewriting: We rewrite URLs using encodeURL(...) and worked fine for
more than a year.
The problem started once we introduced the META-Refresh to forward user's
screen after time out when Javascript is OFF. The copy of the HTML source
from browser is as below:
<META HTTP-EQUIV=Refresh
CONTENT="600;
URL=../jsp/UserMessage.jsp;jsessionid=To1071mC22961575233267228At?msgid=1001&grace=120;">
Since semi-colon marks the end of URL, browser was not forwarding the
jsessionid. If I copy the URL into browser manually, it works fine.
Q1. Is there a third way of session tracking? I remember reading somewhere
about keeping an hidden <input> field with name="jsessionid" in the page.
Any help on this?
Q2. I guess tomcat doesn't support any other character in the place of
semi-colon. Is there any way to escape this character in the META value?
Note: We need to use Javascript OFF per customer's requirements.
Thanks,
Sri
jsp/etrUserMessage.jsp;jsessionid=To1075mC2510161898001374At?msgid=1001&grac
e=120
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: session tracking using URL rewriting & META=refresh
Posted by Srinadh Karumuri <sk...@bbn.com>.
It looks like no one had to deal with this earlier. I made a work around,
not fancy but works.
I used:
<META HTTP-EQUIV=Refresh
CONTENT="600;
URL=../jsp/UserMessage.jsp?jsessionid=To1071mC22961575233267228At&msgid=1001&grace=120;">
and in this page for <form> etc., I used:
<form action=<%= "/jsp/newPage;jsessionid=" +
request.getParameter("jsessionid")%>>
-Sri
At 10:27 AM 8/29/2002, Srinadh Karumuri wrote:
>Hi,
>
>I know there are two ways of session tracking in Tomcat 3.
>1. Cookies based: This is out of question as our customers do not want this.
>2. URL rewriting: We rewrite URLs using encodeURL(...) and worked fine for
>more than a year.
>
>The problem started once we introduced the META-Refresh to forward user's
>screen after time out when Javascript is OFF. The copy of the HTML source
>from browser is as below:
>
><META HTTP-EQUIV=Refresh
>CONTENT="600;
>URL=../jsp/UserMessage.jsp;jsessionid=To1071mC22961575233267228At?msgid=1001&grace=120;">
>
>Since semi-colon marks the end of URL, browser was not forwarding the
>jsessionid. If I copy the URL into browser manually, it works fine.
>
>Q1. Is there a third way of session tracking? I remember reading somewhere
>about keeping an hidden <input> field with name="jsessionid" in the page.
>
>Any help on this?
>
>Q2. I guess tomcat doesn't support any other character in the place of
>semi-colon. Is there any way to escape this character in the META value?
>
>Note: We need to use Javascript OFF per customer's requirements.
>
>Thanks,
>Sri
>
>
>jsp/etrUserMessage.jsp;jsessionid=To1075mC2510161898001374At?msgid=1001&grac
>e=120
>
>
>--
>To unsubscribe, e-mail: <ma...@jakarta.apache.org>
>For additional commands, e-mail: <ma...@jakarta.apache.org>
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>