user authorization problem
I am trying to build a simple web-site which has a user authorization functionality.
I receive the login information via jsp page (containing hmtl forms).
Jsp page sends this information to the servlet.
Servlet instantiates a java object specific for this user.
so for each logged-in user there is a corresponding java object. Example
Until here things are ok.
myObject usr1 = new myObject("user1");
myObject usr2 = new myObject("user2");
The problem arises when user wants to logout using the logout form in the jsp page.
I am not able to determine which user wants to log out.
Does the user who wants to logout belongs to usr1 object or usr2?
Is there a way to do this without servlet session management?
- How can i hold the information on jsp pages so that in servlet i will be able to understand who wants to logout?
- How can i pass this information from jsp to servlet?
I don't want to use HttpSession objects.
Thanks in advance.