Java Session

Java/J2ee Programming Training
Session

Classification: Restricted
Agenda
• HTTP Protocol
• HttpSession API
• Destroying the session of webapp
• Cookies
• Session Management using Cookie
• Url Rewriting

Http Protocol
• Http is a stateless protocol
• Each request is considered as new request by the server
• Protocol does not remember the conversational state

HttpSession
• Identify the clients using HttpSession
• Information about client is stored in session object

req HttpSession
HttpSession session = request.getSession()

reqsession req.getSession()
HttpSession session = req.getSession();

reqsession req.getSession()
session.setAttribute(“home”,Home );
session.setAttribute(“home”,Home);

req
user=Tomsession req.getSession()
session.setAttribute(“user”,Tom);
session.setAttribute(“user”,Tom);

req
String user = (String)session.getAttribute(“user”);
session.getAttribute(“user”);

req
session.removeAttribute(“user”);
session.removeAttribute(“user”,Tom);

req
session.removeAttribute(“user”);
session.invalidate();
session.invalidate()

HttpSession API

Destroying the session of webapp

user/pwd in invalid
${requestScope.error}
submit
class LoginServlet extends HttpServlet
{
public void doGet(HttpServletRequest request, HttpServletResponse response)
{
if( user.equals(“tom”) && pwd.equals(“hr”))
{
HttpSession session = request.getSession(true);
session.setAttribute(“username”, user);
response.sendRedirect(“Home.jsp”);
}
else
{
RequestDispatcher rd=
request.getRequestDispatcher(“Login.jsp”);
request.setAttribute(“error”, “user/pwd is invalid”);
rd.forward( request, response );
}
}
}
Hi John,
${sessionScope.user}
Home About
session user=tom
Home.jsp

user/pwd in invalid
${requestScope.error}
submit
class LogoutServlet extends HttpServlet
{
public void doGet(HttpServletRequest request, HttpServletResponse response)
{
HttpSession session = request.getSession(false);
session.removeAttribute(“username”);
session.invalidate();
}
}
Hi John,
${sessionScope.user}
Home About
session user=tom
Home.jsp

HttpSession
• Is accessible to all the web components through out the session.

response.sendRedirect() Vs rd.forward(req, res);
rd.foward(req,res)
response.sendRedirect();

Cookies
• Cookies allow webserver to store information
on client machine
• cookies are sent in response from web server
• cookies are stored in partition assigned to webserver domain
• All cookies for the webserver are sent on every request to the webserver

Cookies
• cookies have a lifespan and are flushed by the browser at the end of
lifespan
-cookies are flushed when the browser exits, if the lifespan is not
configured

Cookie API

Session Management using Cookie

• Storing Cookie • Retrieving Cooking

Typical Uses of Cookies
• – Identifying a user during an e-commerce session
• – Avoiding username and password
• – Focusing advertising
• – Customizing a site

Remember Me
submit
if ( rememberMe)
{
Cookie c = new Cookie(“user”, username);
response.addCookie( c ) ;
Cookie c2 = new Cookie(“pass”, pass);
response.addCookie( c2 )
}
user=tom
pass=tom

Remember Me
submit
Cookies cookies[] =request.getCookies();
out.println( c[ 0 ].getName() + “ = “ + c[ 0].getValue());
out.println( c[ 1 ].getName() + “ = “ + c[ 1 ].getValue());
request
user=tom
pass=tom
0 1
user=tom pass=tom

Url Rewriting
String url = response.encodeURL(“fact.do”);

Thank You

Java Session

More Related Content

What's hot (20)

Similar to Java Session (20)

More from AathikaJava (16)

Recently uploaded (20)

Java Session