I was going thru the struts source code and was in particular reading the way they have implemented the synchronizer token pattern for preventing multiple submits on transacional pages.
I saw that they have synchronized on session ID attribute. Is it possible that multiple session share the same session ID? There is noting in the servlet API that mandates it. ~madhav -- When I tell the truth, it is not for the sake of convincing those who do not know it, but for the sake of defending those that do
