public class ApplicationSessionStateSupport extends SessionStateSupport
InterRequestStateMgmt
to replicate or share the data in a clustered environment.Constructor and Description |
---|
ApplicationSessionStateSupport(String baseApplicationKey,
int idleTimeoutInMinutes,
int maxTimeoutInMinutes,
SessionStateCleanable cleanable)
Construct an ApplicationSessionStateSupport for the unique application key.
|
ApplicationSessionStateSupport(String baseApplicationKey,
SessionStateCleanable cleanable)
Construct an ApplicationSessionStateSupport for the unique application key.
|
Modifier and Type | Method and Description |
---|---|
Object |
getAttribute(String name,
javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse resp)
Retrieves a named attribute from the the user session (as determined by the request)
|
void |
setAttribute(String name,
Object value,
javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse resp)
|
void |
setAttribute(String name,
Object value,
javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse resp,
boolean usedAsLoginCtx)
Sets or associates a named attribute with the user session (as determined by the request)
|
removeAttribute
public ApplicationSessionStateSupport(String baseApplicationKey, SessionStateCleanable cleanable)
baseApplicationKey
- A unique key that will separate application sessions from each other.cleanable
- an instance of SessionStateCleanable
used to cleanup an expired session.public ApplicationSessionStateSupport(String baseApplicationKey, int idleTimeoutInMinutes, int maxTimeoutInMinutes, SessionStateCleanable cleanable)
baseApplicationKey
- A unique key that will separate application sessions from each other.idleTimeoutInMinutes
- The maximum time that a user can wait in between session interactions. A value of less then zero indicates there is no idle timeout.maxTimeoutInMinutes
- The total time a user can interact with the session before it is cleaned. A value of less then zero indicates there is no max timeout.cleanable
- an instance of SessionStateCleanable
used to cleanup an expired session.public void setAttribute(String name, Object value, javax.servlet.http.HttpServletRequest req, javax.servlet.http.HttpServletResponse resp)
setAttribute(String, Object, javax.servlet.http.HttpServletRequest, javax.servlet.http.HttpServletResponse, boolean)
setAttribute
in class SessionStateSupport
name
- the name of the attributevalue
- the attribute valuepublic void setAttribute(String name, Object value, javax.servlet.http.HttpServletRequest req, javax.servlet.http.HttpServletResponse resp, boolean usedAsLoginCtx)
setAttribute
in class SessionStateSupport
name
- the name of the attributevalue
- the attribute valueusedAsLoginCtx
- Instructs the the underlying state mechanism (if appropriate) as to if certain mitigation steps against session fixation should be taken.
Use true, if the attribute is used to maintain a security or login context, and false otherwise.public Object getAttribute(String name, javax.servlet.http.HttpServletRequest req, javax.servlet.http.HttpServletResponse resp)
getAttribute
in class SessionStateSupport
name
- name the name of the attributeCopyright 2019 Ping Identity Corp. All rights reserved.