Re: UU code

["Ilya A. Volynets-Evenbakh" <ilya@total-knowledge.com>]

Logout is simple. You destroy the session. Period.

sergey@total-knowledge.com wrote:
> I was going to add LogoutServlet to my application and I needed to know
> what would happen on this event. But I can leave it for now.
>
>   
>> What rose these questions?
>> What exactly are you trying to come up with right now?
>>
>>
>> sergey@total-knowledge.com wrote:
>>     
>>> The question now when user gets new session.
>>>
>>> 1. Does it happen when he closes his browser and opens it again right
>>> away? I guess it depends on session cookie life time.
>>>
>>> My opinion - no new session should be generated.
>>>
>>> 2. Does it happen when he logs out?
>>>
>>> My opinion - yes. User may register again or login with another
>>> account(not sure if we are going to allow that)
>>>
>>> 3. Any other cases when new session generates, except of first visit?
>>>
>>> My opinion - no.
>>>
>>>
>>> Some web applications generate new session when user completes his
>>> order,
>>> but I don't think it can be used in UU.
>>>
>>> Please share your thoughts.
>>>
>>>
>>>       
>>>> That is correct, and that is exactly how it is documented.
>>>> If you look at HttpSession function list, you'll find there is an
>>>> invalidate()
>>>> function though. If you call that, and then call getSession(true), then
>>>> you'll
>>>> get a new session.
>>>>
>>>> --
>>>> Ilya A. Volynets-Evenbakh
>>>> Total Knowledge. CTO
>>>> http://www.total-knowledge.com
>>>>
>>>>
>>>>
>>>>         
>>>
>>>       
>> --
>> Ilya A. Volynets-Evenbakh
>> Total Knowledge. CTO
>> http://www.total-knowledge.com
>>
>>
>>     
>
>
>   

-- 
Ilya A. Volynets-Evenbakh
Total Knowledge. CTO
http://www.total-knowledge.com