On 1/14/11 10:13 PM, spr...@gmx.eu wrote: >> What are you using the session id for? > > I use form auth. Subsequent calls after a successful login in the same > session are not authenticated again. > This is standard I would say.
Are you unable to retrieve the new session id? >> Don't rely on the session id remaining the same. > > Then the applet has to know the user credentials and has to post to the > login servlet. This is not possible (3rd party applet). Programmatic login is now possible in Servlet 3.0, would this help? See: http://tomcat.apache.org/tomcat-7.0-doc/servletapi/javax/servlet/http/HttpServletRequest.html#login(java.lang.String, java.lang.String) p
0x62590808.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature
