• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

logging mechanism

 
Sherif Shehab
Ranch Hand
Posts: 485
Android Eclipse IDE Oracle
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi ,
i'm developing a reporting system with a logging mechanism , to get the username and password from the jsp then check them with what in the DB in a servlet , then store the username in the session to use it in some stuff , i made logout mechanism too by making a link to execute a servelt that do removing the username from the session then invalidating the session then using request dispatcher to forward to the login page again , but i think this logout mechanism is poor design ,
So anyone can advice me with more powerful logout mechanism ?
 
Bear Bibeault
Author and ninkuma
Marshal
Pie
Posts: 65216
95
IntelliJ IDE Java jQuery Mac Mac OS X
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I was confused until I realized that you meant "log in" rather than "logging". They are two different concepts.

What is it that you don't like about your design?
 
Sherif Shehab
Ranch Hand
Posts: 485
Android Eclipse IDE Oracle
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Bear Bibeault wrote:I was confused until I realized that you meant "log in" rather than "logging". They are two different concepts.

What is it that you don't like about your design?

Sorry i wrote the the subject wrong i meant "logout mechanism " , what i don't like in my design in the logout mechanism ...
 
Bosun Bello
Ranch Hand
Posts: 1511
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Why do you thing your logout page design is a poor design. It sounds okay to me.
 
Sherif Shehab
Ranch Hand
Posts: 485
Android Eclipse IDE Oracle
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Bosun Bello wrote:Why do you thing your logout page design is a poor design. It sounds okay to me.

Because i think the logout mechanism it's too simple and i need it more powerful . am i right or wrong ?
 
Paul Sturrock
Bartender
Posts: 10336
Eclipse IDE Hibernate Java
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
"more powerful"? What extra functionality do you want to add?
 
Sherif Shehab
Ranch Hand
Posts: 485
Android Eclipse IDE Oracle
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
i don't know this why i asked the experts , or do you think the current logout mechanism is ok ?
 
Mohamed Inayath
Ranch Hand
Posts: 124
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
While invalidating the session no need to remove explicitly the session bound variables.
As it is implicit when you invalidate a session.

And regarding powerful, what you are expecting when you do a logout?
 
Bear Bibeault
Author and ninkuma
Marshal
Pie
Posts: 65216
95
IntelliJ IDE Java jQuery Mac Mac OS X
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
And the opposite is also true. If you remove the token from the session that indicates that a user is logged in, there's no need to invalidate the session. One or the other is sufficient.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic