An idea I've also seen floated is to have javascript keep refreshing a small transparent image every so often. I've never tried it, but it shows up frequently as a solution in google. Benefit is you have indefinite session life without a lot of dead session clutter.
--David Richard Mixon wrote: >Dennis, >For just that webapp, you can always bump the session timeout to a very high >value. >That would just take a change to the web.xml, no change of authentication >method needed. >HTH - Richard > >-----Original Message----- >From: Klotz Jr, Dennis [mailto:[EMAIL PROTECTED] >Sent: Wednesday, March 08, 2006 3:54 PM >To: Tomcat Users List >Subject: basic question regarding BASIC and FORMS logins > >Greetings all, > >I'm trying to get my facts straight, and I'm hoping you will help. > >I am using forms based login right now and when the tomcat session times >out, the user has to login again. No surprise there. > >Now, some of our customers don't like this, so for them - can I use a BASIC >login (with SSL possibly) and their user will always be able to use the >session as long as the browser doesn't go away. This is even if the tomcat >session expires! > >Is that right? > > >Regards, > >-Dennis Klotz > > >--------------------------------------------------------------------- >To unsubscribe, e-mail: [EMAIL PROTECTED] >For additional commands, e-mail: [EMAIL PROTECTED] > > > >--------------------------------------------------------------------- >To unsubscribe, e-mail: [EMAIL PROTECTED] >For additional commands, e-mail: [EMAIL PROTECTED] > > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
