what do you mean by "session validation" is it something like checking whether the sessionn already exists or not?
if so, then:
public boolean isNew()
Returns true if the client does not yet know about the session or if the client
chooses not to join the session. For example, if the server used only cookiebased
would be new on each request.
Returns: true if the server has created a session, but the client has not yet
IllegalStateException - if this method is called on an already invalidated
is that what you're after?