[jboss-user] [JBoss Portal] - Manage the HttpSession

marimuthub do-not-reply at jboss.com
Wed Dec 12 08:27:34 EST 2007


We have AuthenticationFilter for our application. Each request from any portal page of our application is going through AuthenticationFilter. 
We are getting forbidden error for the following scenario
Open new browser login to application using user name called “X”. Login is success and user is directed to user home page. Close the browser
Open new browser login to application using user name called “Y”. Here we getting 
Forbidden error instead of redirecting to user home page

We are managing the HttpSession as follows for each scenario.

User Login:
// To get the session
HttpSession session = request.getSession();
// To set any value
// Forward to user home page
RequestDispatcher rd = request.getSession().getServletContext()			.getContext("/portal").getRequestDispatcher(

rd.forward(request, response);

Subsequent request after login :
HttpSession session = req.getSession();

User logout:
// to remove any value
// to invalidate the session

Please help us to resolve the issue


View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4112254#4112254

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4112254

More information about the jboss-user mailing list