jersey - Why the session attribute is coming as null -


a html5 ui connected backend (rest jersey business logic hibernate , db). need create , maintain session each user login until user logs out.

i clueless on how approach problem.

i followed approach

initially when user logs in , setting attribute under session shown below 

httpsession session = request.getsession(true); session.setattribute("islogged", "islogged"); string value = (string)session.getattribute("islogged"); system.out.println("****************** user logge in value"+value);

later in different page checking if user logged in or not way 

public string checkifuserloggedin() throws jsonexception,classnotfoundexception, sqlexception     {         httpsession session = request.getsession();          string value = (string)session.getattribute("islogged");          if(value==null)         {             // coming here          }      }

i agree francesco foresti, please not rely on http session without auth. unsafe, , quite dangerous app.

have been implementing specific session mecanism ? if not, jersey not store session data it. every call make give session id different yours. have make authentication & use auth token in order identify session.

  1. use jax-rs please use auth mecanism defined : https://jersey.java.net/documentation/latest/security.html

    @path("authentication") @singleton public static class myresource {     // jersey inject proxy of security context     @context     securitycontext securitycontext;      @get     public string getuserprincipal() {         return securitycontext.getuserprincipal().getname();     } }

  2. or use framework : spring, shiro.... etc. prefer solution, since framework implement lot of stuff you. gain lot of time doing so.

please take official jersey doc: https://jersey.java.net/documentation/latest/index.html


Comments

Post a Comment

Popular posts from this blog

android - MPAndroidChart - How to add Annotations or images to the chart -

i working latest mpandroidchart library , looking way add annotations or images clickable. example: once data reaches value event occurs want able display user - there multiple events can occur annotations (not sure if right word) or image added @ point in chart. any pointers welcome. check documentation of yaxis . focus on setspacetop(...) , setaxismaxvalue(...) methods. for background: bar-shadow , disable calling: barchart.setdrawbarshadow(false) or change color: bardataset.setbarshadowcolor(int color)
Read more

javascript - Add class to another page attribute using URL id - Jquery -

i have attached id url. ex: when click link 1 , has #tab-2 id , takes me landing page. in landing page have find element has #tab-2 id have add class .active . i tried no luck. please 1 correct code. thanks js fiddle link html <div class="menu"> <ul> <li><a href="http://jsfiddle.net/gscyoa0j/1/#tab-2">link 1</a></li> <li><a href="http://jsfiddle.net/gscyoa0j/1/#tab-44">link 2</a></li> <li><a href="http://jsfiddle.net/gscyoa0j/1/#tab-74">link 3</a></li> </ul> </div> landing page <div class="tab"> <ul> <li><a id="tab-2" class="active" >link 1 content</a></li> <li><a id="tab-44" >link 2 content</a></li> <li><a id="tab-74" >link 3 content</a></l...
Read more

firefox - Where is 'webgl.osmesalib' parameter? -

i'm trying webgl running on firefox (v37.0.2) via software acceleration mesa. tried following steps have been stated in article: http://www.binarytides.com/enable-webgl-firefox-ubuntu/ however, unable find parameter named ' webgl.osmesalib ' in about:config section? has been removed (or renamed)? if yes, how should instruct firefox use mesa's software acceleration webgl? looks support osmesa removed in favour llvmpipe.
Read more