session-timeout

I have following configuration in web.xml in tomcat 7. I am wondering if I can add any configurable parameter here, so that if user tries to do any operation post 30 minutes, I redirect the user to our home page. <session-config> <session-timeout>30</session-timeout> <cookie-config> <domain>mydomain.mycompany.com</domain> <http-only>true</http-only> <secure>false</secure> </cookie-config> <tracking-mode>COOKIE</tracking-mode> </session-config> ohwhy This is probably not possible by configuration only. You will have to add a filter aswell. One way of doing that is described here: https:/

I use the following codes to create a session object in JSF. The problem is that after sometime when I am trying to access userdet object it is giving me exception possibly because of session timeout. Is there anyway to increase the session timeout in JSF. FacesContext context = FacesContext.getCurrentInstance(); HttpSession session = (HttpSession) context.getExternalContext().getSession(true); session.setAttribute("userdet",user); When I use servlet I use the following codes but is it applicable to JSF also? <web-app ...> <session-config> <session-timeout>20</session-timeout> </session-config

I have the following situation: Microsoft Report Viewer 2010 is used to display reports (.rdlc files) in local mode in an ASP.NET web application. The report data is supplied by assigning a datasource in the code behind of an ASPX page. Here's an example: if(!IsPostBack){ ReportViewer1.Reset(); ReportDataSource reportDataSource = new ReportDataSource(); reportDataSource.Name = "DataContainerType"; reportDataSource.Value = DatasourceOnPage; reportDataSource.DataSourceId = "DatasourceOnPageID"; reportDataSource.DataMember = "DataSourceView"; ReportViewer1.ProcessingMode = ProcessingMode.Local;

We are currently running into a problem with session time outs on one of our Spring web applications. The session never times out because we have a continuous ajax request polling the server. Is there a way to tell spring to ignore this request and not update the session so that time out works as expected? You could run a timer, equal to your session timeout, along side the continuous ajax request that would log the user out if the page never refreshes. Another idea would be to host the URL that you are hitting in a separate web application on the same domain. I'm not sure if Spring has

Is it possible to have different session time outs for different users? I need to have 180 mins session for admin and 20 min for non-admin users. Currently it is single session timeout for all the users. we are using a web.config key Any help would be appriciated. Learning Setting Session.Timeout property by code will set the timeout on a per user basis. You can manually set Session.Timeout = 20; or Session.Timeout = 180; based on the user type when they log in. This code should work for you: protected void SetSessionTime(string userType) { if (UserType == "admin") { Session.Timeout = 180; }

This question already has answers here : Closed last year . How to call sessionDestroyed when a session times out (4 answers) I have an implementation of HttpSessionListener where 'locked' resources in the application are released with sessionDestroyed method. The 'lock' information is maintained in database, and the release of locks is working fine in most cases. But In some cases I still see resource is locked - even if there is no session active! So, I'm doubting if there is possibility that sessionDestroyed not being invoked? Suppose if the session is timed out - will sessionDestroyed