5.4.1 Types of sessions
There are the following types of sessions that relate to the integrated user management function.
-
Web container-managed session (HttpSession)
Represents the HttpSession object.
-
Integrated user management session
This represents the period from login to logout using the Cosminexus standard login module.
As multiple users can log into one session, the session will not become invalid unless all login users log out. As it synchronizes with HttpSession, which is the Web container-managed session, it will become invalid when HttpSession becomes invalid even if users are logging in.
The following two functions are used to control the integrated user management session.
-
The Cosminexus standard login modules can automatically register or delete the login user IDs and realm names during or from the session.
-
Integrated user management supports the session failover functionality. When the session failover functionality is enabled, the session failover cluster can inherit the login state. The administrators can select whether to inherit the login state when the session failover functionality is enabled.
-
-
This represents the login user session that each application has. The concept of this session depends on the custom login module specifications. (Generally, it represents the period from login to logout.)
The custom login modules can automatically register or delete the login user IDs and realm names to or from the session.