Regarding Session Management

Similar Messages

• Regarding session manager

  Hi,
  when two users login with the same username and password, First logined users session have to close automatically. Is it possible, pls convey ur idea and help me.

  hi
  good
  its possible only for ECC 5.0 and ECC 6.0 not before that,in this two version if two user open the sap logon using same uid and pwd than the first window ll close automatically but in the previeous version it ll show you a message that wheather you want to close the previous window that you have been open or you ll continew with this window without closing that.
  thanks
  mrutyun^

• Plugin based Web Service with session management

  I am trying to make a web service in java with jax-ws that should support extensions to the service without rebuilding the project. I thought it might be possible to make a standard web service and the let each plugin create their own service, making the client side plugin point to both the standard service and the plugin specific one. This way I could have user management and such in the standard service and the more plugin specific one in an other service. The problem is though, how do I make a common session for all the services? All services are running at the same server and on the same domain name.
  I checked the HTTP headers and found out that the JSESSIONID was changing when I created a new port on the client side. I was trying to implement a SOAPHandler to edit the cookie in the HTTP header, hoping that this will lead to the same session across the services. But found it hard. It was no problem reading the "Set-cookie" header, setting the cookie on the new requests was harder, as the CookieJar object seems to be internal [1]. And the MessageContext.HTTP_REQUEST_HEADERS wasn't created at the time my handlers run. Is there an easy solution to this?
  I am not sure if my idea is a good solution to the main problem, and all other ideas are more than welcome. I hope it is possible to extend the features of my server without rebuilding the project. If anything is unclear, feel free to ask :)
  [1] com.sun.xml.internal.ws.client.http.CookieJar

  Adhir_Mehta wrote:
  Could you explain plug in scenario with one example?Ok. We have not chosen exactly how to do this, but the idea is that someone may be able to extend the functionality of our server without rebuilding the project. We thought of something like a jar file with a implementation of some abstract classes. It should at least only be necessary to redeploy the project into the web container. The problem is; how do we let the plugins extend our web interface? One solution we thought of was to let each plugin have it's own service and dynamicly link to the plugin services from the main service that we provide as standard in our server. This way we may have some kind of plugin support on the clients as well, making the client side plugins know what kind of service it needs on the server side and thus extending the functionality all together.
  Hope that explains our scenario. Feel free to comment and add new ideas :)
  Regarding session management, its not advisable to manage the session in web services since that way it will become non interoperable.The documentation we found regarding sessions and jax-ws was all doing sessions with HTTPSessions, and to let the web container handle that.
  On the server side
      @Resource
      private WebServiceContext wsContext;
      private HttpSession getSession() {
          MessageContext mc = wsContext.getMessageContext();
          return ((javax.servlet.http.HttpServletRequest)mc.get(MessageContext.SERVLET_REQUEST)).getSession();
      HttpSession session = getSession();
      session.setAttribute("User", user);On the client side
  ((BindingProvider)port).getRequestContext().put(BindingProvider.SESSION_MAINTAIN_PROPERTY,true);Do you have other standard options for us on how to do session management? All ideas are more than welcome

• Session management and java Web Service

  Hi ,
  Can I have two web services one based on Session bean and other on Simple java class, packaged into single ear file? Does NetWeaver supports web service session management/tracking? How can I get an handle to HttpRequest in my Web Service?
  Any help will be appreciated.
  Thanks in advance
  regards,
  rajinder

  Container Managed Authentication. Does everything you need.

• Issue in session management

  Hi All,
  I have a problem regarding java session management.
  i have created one web application in which i want if user login from one browser instance and opens another instance of same browser and logs in from that then user should be logged out from previous instance. I am using Mozzila 5.0.
  Here is what i am doing while creating session in LoginServlet.java
  session = request.getSession(false); //return session if already exists
  System.out.println("Session object: "+session);
  if(session != null)
  System.out.println("Session ID Old: "+session.getId());
  session.invalidate(); //invalidate the session if already exists
  session = request.getSession(true); //Create new session
  System.out.println("Session ID New: "+session.getId());
  Second and third System.out.println() statements giving the same session id.
  This way only the information stored in session when user was logged in from first instance of browser is replaced with the new information stored when the user logged in from second instance of browser, but the user is not logged out from the first browser instance.
  Please help me out how i can log the user out from first instance if he logs in from second instance.
  Thanks in advance...

  Since user in logging again from the same machine so i think invalidating the previous session won't work.
  Suppose user opens first instance of the mozilla browser and login as say 'ashok' whose role is normal user now he opens another instance of mozilla by clicking on executable and login as 'mitch' whose role is admin then after successful login of 'mitch' on first window mitch's menus items are getting displayed instead of ashok's.
  What i am doing is,
  While creating new session on login i first check is any existing session available in above case its true
  session = request.getSession(false); //return session if already exists
  System.out.println("Session object: "+session);
  if(session != null)
  System.out.println("Session ID Old: "+session.getId());
  session.invalidate(); //invalidate the session if already exists
  session = request.getSession(true); //Create new session
  System.out.println("Session ID New: "+session.getId());
  so control will go inside the if block, here i first invalidate the existing session (this is not destroying the session but only unbinding the information that was stored in the session) and create new session (this is returning the same session which was already exists) and save mitch's information. Since the previous instance was using the same session that will now get the mitch's information so now both instances will show the mitch's information.
  I am not getting any way to destroy the existing session so next time new session id will get generated.

• New possibility in session manager: user menu - SAP menu

  Hi guys,
  there is a new possibility to customize, which menu users get displayed first in session manager. Its a customizing switch in SSM_CUST. This new possibility enables the user still to select both menu options, but the initial display in every new mode is regulated by the switch.
  Available with  [SAP Note 1658872|https://service.sap.com/sap/support/notes/1658872]
  b.rgds, Bernhard

  Hello Kamal,
  Did you do this?
  1. Create a client in SCC4
  2. Log off from the system.
  3. Logon to the new client with user SAP*, password PASS
  4. Go to SCC3:
  Source: Client 000
  Source User: Client 001
  Target: Your new client
  Profile : SAP_ALL
  Delete the profile parameter 'login/no_automatic_user_sapstar' when you have created the first user in the new client. Restart the system to make the changes effective.
  See: SAP note 806819.
  Best regards,
  Dolores

• What's the role of jsessionids in ADF session management?

  Hi all,
  I'm fairly new to ADF and I've had a client ask me if ADF is using jsessionid consistently for sessionization.
  From a quick google search it sounds like all J2EE applications will be using jsessionids as part of their session management, and it doesn't look too difficult to access this information programmatically. Can anyone elaborate for me on what exactly jessionids are and whether they are guaranteed to exist if a session of an ADF application has been instantiated? Basically I think I know the answer to my client's question is yes, but can anyone help me understand the role of jsessionids in ADF apps and other J2EE apps?

  Hi.
  This is a basic behavior in all Java application servers, as it is mandated by the Java Enterprise Edition specification. The ID is used to match the HTTP request to its session object. Basically, the web container will add jsessionid to the URL when the session id cannot be saved in a cookie. This behavior can also be enforced through settings in weblogic.xml, for example, if you are using WLS.
  ADF is built on the top of JEE; consequently, it uses jsessionid in exactly the same way as any other Java application.
  Best Regards,
  Frédéric.

• Re: (forte-users) Session management for page builder(fwd)

  Jaco,
  Hope this helps,
  John
  John Soper, Information Systems Development, ITS, The University of Melbourne
  email: j.soperits.unimelb.edu.au >>>> Tel: 9344 5612---------- Forwarded message ----------
  Date: Mon, 10 Jan 2000 16:34:31 +1100
  From: Lyle Winton <L.Wintonits.unimelb.edu.au>
  To: John Soper <j.soperits.unimelb.edu.au>
  Subject: Re: (forte-users) Session management for page builder (fwd)
  Why not construct an intermediate page after the
  login page that has SESSION_UNSPECIFIED and
  a refresh META tag. The page can then refresh
  to either the login failed or login succeeded pages
  depending on how the login went! Looks like...
  1) Login page (SESSION_UNSPECIFIED)
  2A) Refresh page (SESSION_UNSPECIFIED)
  < HTML >
  < HEAD >
  < META http-equiv="refresh"
  content="0;URL=<a href=
  "http://www.blah.com/forte.cgi?PageName=3">http://www.blah.com/forte.cgi?PageName=3</a>" >
  < /HEAD >
  < BODY >
  Login succeeded. Please wait...
  < /BODY >
  < /HTML >
  2B) Refresh page (SESSION_UNSPECIFIED)
  < HTML >
  < BODY >
  Login failed.
  < /BODY >
  < /HTML >
  3) We're finally in. (SESSION_REQUIRED)
  I'm not sure if this works on internet exploder.
  Lyle.
  John Soper wrote:
  Lyle,
  (Post from forte mailing group)
  Does this make sense to you?
  John
  John Soper, Information Systems Development, ITS, The University of Melbourne
  email: j.soperits.unimelb.edu.au >>>> Tel: 9344 5612---------- Forwarded message ----------
  Date: Thu, 30 Dec 1999 07:54:24 +0200
  From: "Jaco Erasmus (home)" <jacoerasmweb.co.za>
  To: kamranaminyahoo.com
  Subject: (forte-users) Session management for page builder
  Hi everybody,
  We have a lot of legacy code making use of the page builder service to
  produce web pages. These pages were originally written without session
  management. I'm now busy adding session management to them, but there is
  one problem with this approach and I will appreciate if someone can shed
  some light on it. Here it is:
  Page one is submitted.
  Some validation (authentication) takes place and depending on the outcome,
  either page 2A (SESSION_REQUIRED) or 2B (error page with
  SESSION_UNSPECIFIED) must be displayed. In order to implement this, I
  needed a place to make a decision. The way I've done it, is to pass a
  'virtual page' (SESSION_UNSPECIFIED) to the page builder service. The
  validation is done here and request.PageName is then replaced with the
  PageName of pages 2A or 2B. The HandleRequest() method is then called
  again. The problem is that the ValidateSession() method does not get
  invoked again, thus allowing 2A through without a session. How do I make
  sure that the ValidateSession() method get invoked again?
  The approach making use of templates look to me as if it has all the means
  to do this (redirect tag), but I don't want to rewrite everything if I
  don't have to. Is there a way that a pagebuilder page can be specified by
  the redirect tag? This will definitely help, but so far I've only managed
  to call templates from the redirect tag.
  Is the template approach better suited for session management? It is
  definetely better documented...
  Regards.
  Jaco
  For the archives, go to: http://lists.sageit.com/forte-users and use
  the login: forte and the password: archive. To unsubscribe, send in a new
  email the word: 'Unsubscribe' to: forte-users-requestlists.sageit.com

  Hi,
  i hope this helps
  http://help.sap.com/saphelp_nw70/helpdata/EN/7e/aa610cc1dd8f4388b1df02fc362f0f/frameset.htm
  http://help.sap.com/saphelp_nw70/helpdata/EN/69/c250754ba111d189750000e8322d00/frameset.htm
  regards,
  Anil.

• Session management in JAX-RCP with JWSDP 1.0_01

  Hi all,
  How can I access to the HTTP Session of the TOMCAT which run the Web Services engine?
  Browsing by the API I've found the method getHttpSession() in the interface javax.xmlrpc.server.ServletEndpointContext.
  How can get an instance which implements this interface?
  Regards,
  C�sar.

  An old thread but I have a question re session management and web services.
  The documentation for ServletEndpointContext says getHttpSession returns null if there is no HTTP session currently active and associated with the service endpoint. It further says the endpoint class should not rely on the HTTP session always being there.
  I need to ensure a session is active after a user successfully logs in. Other than spending alot of time implementing session management myself its the only way to tell whether the service requestor is allowed to use the service. Is the session not guaranteed to be active to take account of things like session timeout? Under normal circumstances where the user is sufficiently active to prevent timeout is it reasonable to assume the session will be there?

• Session management in BO

  Hi All ,
  Could you please share documentation  or pointer  how session management is done in BO (for all the services).How the timeouts work here.
  & details on  memory used per session etc (detailed analysis).
  Regards ,
  Abhinav

  Hi Abhinav,
  Let me point you to this: Session Management Bible by my good friend Onkar Velhal
  Thank you, Rahul

• Session management thru SOAP services

            Hi I am trying to deploy our application in a clsutered environment. Previsouly
            I had some problems with http session replication. That problems were solved but
            now I have another problem.
            Our application has multiple clients, some are browser based and some are swing
            based that use our SOAP services.
            all browser based clients use httpsession for session management, since weblogic
            replicates the httpsession, we have no problem clustering http webapps. But SOAP
            services has no access to httpsession.
            We have implemented our own session management (we cache the app specific session
            objects) so that SOAP services works fine (SOAP services doesn't have access to
            httpsession, so we could not use httpsession for session management). Each method
            in our soap services takes a sessionid and we get the session objects (not http
            session objects but our app specific session objects) based on the sessionid.
            But now that our application is clustered, the session cache mechanism doesn't
            work since its not replicated thru out the clusters.
            I thought I could use stateful session beans to cache the sessions, but how do
            I cache the SFSB thru out the session w/o sending any references to the SFSB to
            the client. I know I can send the Handle reference to the client but We cannot
            change the SOAP API now. The only information client has is the session id.
            My question is: How do I use SFSB w/o changing my soap services method paramaters.
            My SOAP method looks like methodName(String sessionid, ..............)
            I could use a clustered cache but we can't buy anything in the current situation.
            Any help would be appreciated.
            Praveen
            

  Well, does the DSM log have any details? (see [Note 529924|https://service.sap.com/sap/support/notes/529924] on how to view the logs)
  My guess is that you are using different protocols between the dispatcher and a backend system: they both have to use HTTP or both use HTTPS (as described in the same note). That would also explain why the URL for the direct connection to the portal  doesn't present the error, if that URL has the same protocol as the backend.
  Regards,
  Sean

• ITS iView and Session Management in Federated Portal Network

  Hi,
  We use an ITS iView for an HR application in the Portal. When used in federation the session management doesn not work correctly. We fill in a selection screen in the begin of the application and then run the report. When we click the back button in the Portal and then reload the app, the selection of the previous session is used, in stead of showing a new selection screen.
  This only occurs when used in Federated Portal Network. SAP OSS already pointed out that the USR_ABORT command is not given in the consumer Portal. How can we make sure that this command is given, so that the session is correctly closed? How can we set these session management properties and options?
  Best regards,
  Jan Laros

  Solved it. It is done in the federation configuration. In SAP  Note 880482 - Central Note: Federated Portal Network (SAP NetWeaver 7.0) the problem is identified, specific for SPS13. The two properties of the producer: External Hostname and External Port were not updated properly and needed to be changed manually.

• NWA Session Management Exception

  Hi,
  how can I access NWA -> Configuration Management -> Infrastructure -> Session Management.
  I'm running CE7.1 SP5 and get the following exception:
  java.lang.NullPointerException
  at com.sap.tc.lm.itsam.ui.session.mngt.sessionmngt.SessionMngtView.refreshDomainsTree (SessionMngtView.java:745) at com.sap.tc.lm.itsam.ui.session.mngt.sessionmngt.SessionMngtView.wdDoInit(SessionMngtView.java:118) at com.sap.tc.lm.itsam.ui.session.mngt.sessionmngt.wdp.InternalSessionMngtView.wdDoInit(InternalSessionMngtView.java:462) at com.sap.tc.webdynpro.progmodel.generation.DelegatingView.doInit(DelegatingView.java:58) at com.sap.tc.webdynpro.progmodel.controller.Controller.initController (Controller.java:230)... 75 more
  Please give feedback if this error can be reproduced.
  Best regards,
  Kevin

  Hi,
  have you found a solution for this error.
  I have the same error.
  regards

• CUCM Session Management Edition Configuration Example

  Hello:
  Can somebody help with an example of configuration of the session management edition installed in a CUCM version 9 that has to be the central for dial plans and pstn access, it has work with other CUCMs version 9 (leafs)......i will appreciate if you can send an example or even a configuration guide, deployment guide, etc....
  Best Regards
  Bruno Lara 

  You can find a lot of into on it if you search cisco.com
  https://www.ciscolive.com/online/connect/sessionDetail.ww?SESSION_ID=6107&tclass=popup
  Basically think of it as a GK in old terminology, it will aggregate all the dial plans and you will direct anything you don't recognize to it for routing.

• Server side session management

  Hi All,
  I am trying to achieve server side session management following is my code.
  public static void main(String[] args) {
  crmod_activity.proxy.ActivityClient myPort=null;
  try {
  myPort = new crmod_activity.proxy.ActivityClient();
  myPort.setUsername("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX");
  myPort.setPassword("XXXXXXXXXX");
  System.out.println("calling " + myPort.getEndpoint());
  ActivityQueryPage_Input aqi=new ActivityQueryPage_Input();
  ActivityQueryPage_Output aqo=new ActivityQueryPage_Output();
  QueryType qt=new QueryType();
  qt.set_value("");
  ListOfActivityQuery loaq=new ListOfActivityQuery();
  ActivityQuery aq=new ActivityQuery();
  aqi.setListOfActivity(loaq);
  aq.setActivity(qt);
  loaq.setStartrownum(new BigInteger("0"));
  loaq.setPagesize(new BigInteger("20"));
  loaq.setRecordcountneeded(true);
  loaq.setActivity(aq);
  aqi.setListOfActivity(loaq);
  aqi.setIncludeSubBooks("No");
  aqi.setViewMode("Manager");
  loaq.setActivity(aq);
  ListOfActivityData load = myPort.activityQueryPage("",loaq,"","LDC","false","Manager");
  System.out.println(""+load.getRecordcount());
  } catch (Exception ex) {
  ex.printStackTrace();
  Following is the exception i get
  javax.xml.rpc.soap.SOAPFaultException: Server
       at oracle.j2ee.ws.client.StreamingSender._raiseFault(StreamingSender.java:555)
       at oracle.j2ee.ws.client.StreamingSender._sendImpl(StreamingSender.java:396)
       at oracle.j2ee.ws.client.StreamingSender._send(StreamingSender.java:112)
       at crmod_activity.proxy.runtime.Activity_Stub.activityQueryPage(Activity_Stub.java:142)
       at crmod_activity.proxy.ActivityClient.activityQueryPage(ActivityClient.java:107)
       at crmod_activity.proxy.ActivityClient.main(ActivityClient.java:83)
  Which is given when the code was not able to create session.
  Please advice.
  Regards,
  JM

  How would the first change break backwards compatability? You are not changing the package access or anything. You are just changing whether or not the inner class has a reference to a parent. Even if someone extended this class, would they really need a reference to the parent?
  It seems like a minor (if any) compatability issue. Please reconsider your decision to not change it.