MD
Uploaded byMrittunjoy Das
PPTX, PDF426 views

Http session (Java)

The document provides a comprehensive overview of managing HTTP sessions in Java, focusing on creating and accessing sessions, examining session properties, binding data, and invalidating sessions. Key methods like getSession(), setAttribute(), and invalidate() are detailed, along with session timeout configurations. Reference links for further reading are included at the end.

Download to read offline
Seminar Topic Http Session Prepared by- Mrittunjoy Das | MCA – Section (A) ACHARYA INSTITUTE OF TECHNOLOGY
How to Use Sessions • To use a session, first create a session using the HttpServletRequest method getSession(). • Once the session is established, examine and set its properties using the provided methods. • If desired, set the session to time out after being inactive for a defined time period, or invalidate it manually. What we Look further ? • Creating or Accessing a Session • Examining Session Properties • Binding Data to a Session • Invalidating a Session
Creating or Accessing a Session • To create a new session or gain access to an existing session, use the HttpServletRequest method getSession() • HttpSession mySession = request.getSession(); • getSession() - Returns the current session associated with this request, or if the request does not have a session, creates one. • getSession(boolean create) - Returns the current HttpSession associated with this request or, if there is no current session and arument passed is true then it returns a new session. • false parameter to getSession() prevents the servlet from creating a new session if one does not already exist.
Examining Session Properties • Once a session ID has been established, use the methods in the HttpSession interface to examine session properties, and the methods in the HttpServletRequest interface to examine request properties that relate to the session. HttpSession Method Description getCreationTime() Returns the session time in milliseconds since January 1, 1970, 00:00:00 GMT. getId() Returns the assigned session identifier. An HTTP session's identifier is a unique string that is created and maintained by the server. getLastAccessedTime() Returns the last time the client sent a request carrying the assigned session identifier (or -1 if it’s a new session) in milliseconds since January 1, 1970, 00:00:00 GMT. isNew() Returns a Boolean value indicating if the session is new. It’s a new session if the server has created it and the client has not sent a request to it. This means the client has not acknowledged or joined the session and may not return the correct session identification information when making its next request.
Contd… HttpServletRequest Method Description getRequestedSessionId() Returns the session ID specified with the request. This may differ from the session ID in the current session if the session ID given by the client is invalid and a new session was created. Returns null if the request does not have a session associated with it. isRequestedSessionIdValid() Checks if the request is associated to a currently valid session. If the session requested is not valid, it is not returned through the getSession() method. isRequestedSessionIdFromCookie() Returns true if the request's session ID provided by the client is a cookie, or falseotherwise. isRequestedSessionIdFromURL() Returns true if the request's session ID provided by the client is a part of a URL, or false otherwise.
Binding Data to a Session HttpSession Method Description getAttribute() Returns the object bound to a given name in the session, or null if there is no such binding. getAttributeNames() Returns an array of names of all attributes bound to the session. setAttribute() Binds the specified object into the session with the given name. Any existing binding with the same name is overwritten. For an object bound into the session to be distributed it must implement the serializable interface. removeAttribute() Unbinds an object in the session with the given name. If there is no object bound to the given name, this method does nothing.
Invalidating a Session • Direct the session to invalidate itself automatically after being inactive for a defined time period. • Alternatively, invalidate the session manually with the HttpSession method invalidate(). Invalidating a Session Manually • To invalidate a session manually, simply call the following method: • session.invalidate(); • All objects bound to the session are removed.
Setting a Session Timeout In Web.xml Session Configuration <session-config> <session-timeout>30</session-timeout> </session-config>
Reference • https://docs.oracle.com/cd/E19857-01/819- 6518/gcxvp/index.html • https://www.javatpoint.com/http-session-in-session-tracking
Thank You

More Related Content

PPTX
Session tracking In Java
byhoneyvachharajani
 
PDF
REST API and CRUD
byPrem Sanil
 
PDF
RESTful Web Services
byChristopher Bartling
 
PPTX
Cookie & Session In ASP.NET
byShingalaKrupa
 
PPTX
Visitor design pattern
bySalem-Kabbani
 
PDF
Hacking Jenkins
byMiro Cupak
 
PPTX
Spring Boot and REST API
by07.pallav
 
PPTX
Introduction to mvc architecture
byravindraquicsolv
 
Session tracking In Java
byhoneyvachharajani
 
REST API and CRUD
byPrem Sanil
 
RESTful Web Services
byChristopher Bartling
 
Cookie & Session In ASP.NET
byShingalaKrupa
 
Visitor design pattern
bySalem-Kabbani
 
Hacking Jenkins
byMiro Cupak
 
Spring Boot and REST API
by07.pallav
 
Introduction to mvc architecture
byravindraquicsolv
 

What's hot

PPTX
Rest assured
byYaniv Rodenski
 
PDF
UI controls in Android
byDivyaKS12
 
PPTX
enterprise java bean
byJitender Singh Lodhi
 
PPTX
Ajax ppt - 32 slides
bySmithss25
 
PDF
Using Chrome Dev Tools
byMicah Wood
 
PPTX
SignalR for ASP.NET Developers
byShivanand Arur
 
PPT
Active server pages
bymcatahir947
 
PPTX
AWS IAM and security
byErik Paulsson
 
PPTX
Visitor design patterns
byNishant Mevawala
 
PDF
An introduction to React.js
byEmanuele DelBono
 
PPTX
Spring mvc
byPravin Pundge
 
PDF
Spring Framework - Core
byDzmitry Naskou
 
PPSX
Spring - Part 1 - IoC, Di and Beans
byHitesh-Java
 
PPT
Php with MYSQL Database
byComputer Hardware & Trouble shooting
 
PPTX
Spring boot
bysdeeg
 
PPTX
Spring boot Introduction
byJeevesh Pandey
 
PPTX
Entity Framework Core
byKiran Shahi
 
PPTX
Behavioral pattern By:-Priyanka Pradhan
byPriyanka Pradhan
 
PPTX
Adapter Design Pattern
byAdeel Riaz
 
PDF
Rest web services
byPaulo Gandra de Sousa
 
Rest assured
byYaniv Rodenski
 
UI controls in Android
byDivyaKS12
 
enterprise java bean
byJitender Singh Lodhi
 
Ajax ppt - 32 slides
bySmithss25
 
Using Chrome Dev Tools
byMicah Wood
 
SignalR for ASP.NET Developers
byShivanand Arur
 
Active server pages
bymcatahir947
 
AWS IAM and security
byErik Paulsson
 
Visitor design patterns
byNishant Mevawala
 
An introduction to React.js
byEmanuele DelBono
 
Spring mvc
byPravin Pundge
 
Spring Framework - Core
byDzmitry Naskou
 
Spring - Part 1 - IoC, Di and Beans
byHitesh-Java
 
Php with MYSQL Database
byComputer Hardware & Trouble shooting
 
Spring boot
bysdeeg
 
Spring boot Introduction
byJeevesh Pandey
 
Entity Framework Core
byKiran Shahi
 
Behavioral pattern By:-Priyanka Pradhan
byPriyanka Pradhan
 
Adapter Design Pattern
byAdeel Riaz
 
Rest web services
byPaulo Gandra de Sousa
 

Similar to Http session (Java)

PPT
Session Tracking in servlets
bychauhankapil
 
PPTX
Advance java session 8
bySmita B Kumar
 
PDF
Jsp session tracking
byrvarshneyp
 
PPT
self des session_T_M
byDayasagar Kadam
 
PPTX
Using cookies and sessions
byNuha Noor
 
PPTX
IMPORTANT SESSION TRACKING TECHNIQUES.pptx
byyvtinsane
 
PPTX
Servlet session 9
byAnuj Singh Rajput
 
PDF
08 session-tracking
bysnopteck
 
PDF
08 session-tracking
bysnopteck
 
PPTX
01 session tracking
bydhrubo kayal
 
PDF
The Hacker's Guide To Session Hijacking
byPatrycja Wegrzynowicz
 
PPTX
Enterprise java unit-2_chapter-3
bysandeep54552
 
PPT
Lecture8
byChâu Thanh Chương
 
PPT
Session 2 servlet context and session tracking - Giáo trình Bách Khoa Aptech
byMasterCode.vn
 
PPTX
SessionTrackServlets.pptx
byRanjeet Reddy
 
PDF
Java vs Web security Cheat Sheet
byMark Papis
 
PDF
Servlet sessions
byvantinhkhuc
 
PPT
Ecom2
bySantosh Pandey
 
PDF
Working with Servlets
byPeople Strategists
 
PPT
unit-III-full stack web development-Java-Serve-Let.ppt
bydkavitha13
 
Session Tracking in servlets
bychauhankapil
 
Advance java session 8
bySmita B Kumar
 
Jsp session tracking
byrvarshneyp
 
self des session_T_M
byDayasagar Kadam
 
Using cookies and sessions
byNuha Noor
 
IMPORTANT SESSION TRACKING TECHNIQUES.pptx
byyvtinsane
 
Servlet session 9
byAnuj Singh Rajput
 
08 session-tracking
bysnopteck
 
08 session-tracking
bysnopteck
 
01 session tracking
bydhrubo kayal
 
The Hacker's Guide To Session Hijacking
byPatrycja Wegrzynowicz
 
Enterprise java unit-2_chapter-3
bysandeep54552
 
Lecture8
byChâu Thanh Chương
 
Session 2 servlet context and session tracking - Giáo trình Bách Khoa Aptech
byMasterCode.vn
 
SessionTrackServlets.pptx
byRanjeet Reddy
 
Java vs Web security Cheat Sheet
byMark Papis
 
Servlet sessions
byvantinhkhuc
 
Ecom2
bySantosh Pandey
 
Working with Servlets
byPeople Strategists
 
unit-III-full stack web development-Java-Serve-Let.ppt
bydkavitha13
 

Recently uploaded

PDF
Unveiling the Basics of Agentic AI - OSUG Mumbai
bythesubuiyer
 
PDF
Exclusive Hands-On Workshop: Agentic Automation with UiPath (First Edition)
byanabulhac
 
PDF
Revolutionizing SQL Database Design for the Modern Era.pdf
bySQL DBM
 
PPTX
Getting Started with MSP360 Backup for M365/Google
byMSP360
 
PDF
Analyze and Store Logs - RHCSA (RH124).pdf
byLinuxCert Guru
 
PPTX
Bulwark Pokemon League Top 8 graphic archive
byGc Howard
 
PDF
Sylvester Konadu Worcester MA - An Accomplished IT Analyst
bySylvester Konadu Worcester
 
PPTX
AI and Linux in 2025 - Jay LaCroix, Learn Linux TV
byAll Things Open
 
PDF
Transparency Exchange API: How Do You Find the SBOM for a Smart Light Bulb?
byPavel Shukhman
 
PPTX
Expanding Your Toolbox: Beginners Guide to Controlling Kubernetes Logs
byEric D. Schabell
 
PDF
WebXR in Android and Linux with OpenXR
byIgalia
 
PDF
ENTSO-E's Response to the European Commission Call for Evidence on the Strate...
byReynir Orn Bachmann Gudmundsson
 
PDF
Private Governance: How Decentralized Mechanisms Can Regulate the Crypto Economy
byFederico Ast
 
PDF
Manage Local Users and Groups - RHCSA (RH124)
byLinuxCert Guru
 
PDF
Session 4 - Agentic Testing with UiPath Agents
byDianaGray10
 
PDF
Open Source SecurityCon 2025 in Atlanta - Transparency Exchange API: Where To...
byPavel Shukhman
 
PDF
The Complete Crypto Airdrop Playbook: Strategies, Scams & Success Stories | 3...
by3verseTV
 
PPTX
Odoo_by_Infinys_All_in_One_Business_Solution_for_Small_Companies.pptx
byAgusto Sipahutar
 
PDF
AWS re:Invent 2025 Event Presentation Slides
byZilliz
 
PDF
Control Access to Files - RHCSA (RH124).pdf
byLinuxCert Guru
 
Unveiling the Basics of Agentic AI - OSUG Mumbai
bythesubuiyer
 
Exclusive Hands-On Workshop: Agentic Automation with UiPath (First Edition)
byanabulhac
 
Revolutionizing SQL Database Design for the Modern Era.pdf
bySQL DBM
 
Getting Started with MSP360 Backup for M365/Google
byMSP360
 
Analyze and Store Logs - RHCSA (RH124).pdf
byLinuxCert Guru
 
Bulwark Pokemon League Top 8 graphic archive
byGc Howard
 
Sylvester Konadu Worcester MA - An Accomplished IT Analyst
bySylvester Konadu Worcester
 
AI and Linux in 2025 - Jay LaCroix, Learn Linux TV
byAll Things Open
 
Transparency Exchange API: How Do You Find the SBOM for a Smart Light Bulb?
byPavel Shukhman
 
Expanding Your Toolbox: Beginners Guide to Controlling Kubernetes Logs
byEric D. Schabell
 
WebXR in Android and Linux with OpenXR
byIgalia
 
ENTSO-E's Response to the European Commission Call for Evidence on the Strate...
byReynir Orn Bachmann Gudmundsson
 
Private Governance: How Decentralized Mechanisms Can Regulate the Crypto Economy
byFederico Ast
 
Manage Local Users and Groups - RHCSA (RH124)
byLinuxCert Guru
 
Session 4 - Agentic Testing with UiPath Agents
byDianaGray10
 
Open Source SecurityCon 2025 in Atlanta - Transparency Exchange API: Where To...
byPavel Shukhman
 
The Complete Crypto Airdrop Playbook: Strategies, Scams & Success Stories | 3...
by3verseTV
 
Odoo_by_Infinys_All_in_One_Business_Solution_for_Small_Companies.pptx
byAgusto Sipahutar
 
AWS re:Invent 2025 Event Presentation Slides
byZilliz
 
Control Access to Files - RHCSA (RH124).pdf
byLinuxCert Guru
 
In this document
Powered by AI

Overview of the seminar topic focusing on HTTP Sessions, prepared by Mrittunjoy Das, MCA, Acharya Institute of Technology.

Instructions on how to create and use sessions, including session properties and timeouts.

Detailed explanation of creating or accessing a session using HttpServletRequest's getSession() method.

Methods to examine session properties such as ID, creation time, and access time using HttpSession.

Methods to bind data objects to HTTP sessions, including setting, getting, and removing session attributes.

Methods for invalidating sessions either automatically after a timeout or manually using the invalidate() method.

Specifying session timeout in the web.xml configuration file to manage session duration.

References to documentation and resources for further reading on HTTP sessions.

Thank you note concluding the presentation.

Http session (Java)

  • 1.
    Seminar Topic Http Session Preparedby- Mrittunjoy Das | MCA – Section (A) ACHARYA INSTITUTE OF TECHNOLOGY
  • 2.
    How to UseSessions • To use a session, first create a session using the HttpServletRequest method getSession(). • Once the session is established, examine and set its properties using the provided methods. • If desired, set the session to time out after being inactive for a defined time period, or invalidate it manually. What we Look further ? • Creating or Accessing a Session • Examining Session Properties • Binding Data to a Session • Invalidating a Session
  • 3.
    Creating or Accessinga Session • To create a new session or gain access to an existing session, use the HttpServletRequest method getSession() • HttpSession mySession = request.getSession(); • getSession() - Returns the current session associated with this request, or if the request does not have a session, creates one. • getSession(boolean create) - Returns the current HttpSession associated with this request or, if there is no current session and arument passed is true then it returns a new session. • false parameter to getSession() prevents the servlet from creating a new session if one does not already exist.
  • 4.
    Examining Session Properties •Once a session ID has been established, use the methods in the HttpSession interface to examine session properties, and the methods in the HttpServletRequest interface to examine request properties that relate to the session. HttpSession Method Description getCreationTime() Returns the session time in milliseconds since January 1, 1970, 00:00:00 GMT. getId() Returns the assigned session identifier. An HTTP session's identifier is a unique string that is created and maintained by the server. getLastAccessedTime() Returns the last time the client sent a request carrying the assigned session identifier (or -1 if it’s a new session) in milliseconds since January 1, 1970, 00:00:00 GMT. isNew() Returns a Boolean value indicating if the session is new. It’s a new session if the server has created it and the client has not sent a request to it. This means the client has not acknowledged or joined the session and may not return the correct session identification information when making its next request.
  • 5.
    Contd… HttpServletRequest Method Description getRequestedSessionId()Returns the session ID specified with the request. This may differ from the session ID in the current session if the session ID given by the client is invalid and a new session was created. Returns null if the request does not have a session associated with it. isRequestedSessionIdValid() Checks if the request is associated to a currently valid session. If the session requested is not valid, it is not returned through the getSession() method. isRequestedSessionIdFromCookie() Returns true if the request's session ID provided by the client is a cookie, or falseotherwise. isRequestedSessionIdFromURL() Returns true if the request's session ID provided by the client is a part of a URL, or false otherwise.
  • 6.
    Binding Data toa Session HttpSession Method Description getAttribute() Returns the object bound to a given name in the session, or null if there is no such binding. getAttributeNames() Returns an array of names of all attributes bound to the session. setAttribute() Binds the specified object into the session with the given name. Any existing binding with the same name is overwritten. For an object bound into the session to be distributed it must implement the serializable interface. removeAttribute() Unbinds an object in the session with the given name. If there is no object bound to the given name, this method does nothing.
  • 7.
    Invalidating a Session •Direct the session to invalidate itself automatically after being inactive for a defined time period. • Alternatively, invalidate the session manually with the HttpSession method invalidate(). Invalidating a Session Manually • To invalidate a session manually, simply call the following method: • session.invalidate(); • All objects bound to the session are removed.
  • 8.
    Setting a SessionTimeout In Web.xml Session Configuration <session-config> <session-timeout>30</session-timeout> </session-config>
  • 9.
  • 10.