Invalidating session using sessionbinding listener big breasted women dating
get Session() returns the session associated with the given session ID.
The session IDs returned by get Ids() should be held as a server secret because any client with knowledge of another client's session ID can, with a forged cookie or URL, join the second client's session.
And we are using Quartz schedualr which will calls a class which is implementing Job. Using this I want to invalidate all the active sessions.
I have idea like by using Http Session Listener we can do.
Regards, Sree By registering a Http Session Listener you can get the notification of the new session creation, You can get the Http Session object from the Http Session Event add it to a map bound as an attribute in Servlet Context in session Created method, and remove it from the map in session Destroyed method. Unlike Hash Table, the methods of Hash Map are not synchronized.