tags:

views:

1586

answers:

3
+1  Q: 

SWFUpload and Java: Session is lost.

I am using SWFUpload to upload files to java servlet (spring framework). The problem is that the current web session is lost during file upload (it creates a new session). I read that it is a known bug and there are some workarounds somewhere but I can't find anything. Does anyone know how to make it work?

Thanks.

A: 

Had this on the .NET platform as well. The problem is that the Flash Object runs in a different session context than your Java App (it's effectively treated like a new client). One way to get around all of this is to effectively have the object post any necessary information needed to commit the uploads back in the querystring.

Nissan Fan  2009-07-20 18:30:09
+3  A: 

Have a look at this post on the SWFUpload forums. Adding ;jsessionid=XXX to the upload URL may work for you, or it may not; the exact cause of the problem appears unclear. Note that Flash uses the Wininet stack (same as IE), so if you are using a different browser you need to somehow get the session cookie (known to your browser) into the IE cookie.

Vinay Sajip  2009-07-20 18:32:04
This is certainly a potential solution if your web server supports it (most Java Containers do allow session id in the querystring).
Nissan Fan  2009-07-20 18:34:58
It doesn't work for me...
serg  2009-07-20 18:53:52
What doesn't work, exactly? Note that my suggestion uses a semicolon rather than ? to add the session data - did you use this? What does your URL look like?
Vinay Sajip  2009-07-20 19:08:23
Actually it works in IE (even without jsession) but not in FF. You said: somehow get the session cookie (known to your browser) into the IE cookie. How would I do that?
serg  2009-07-20 19:16:25
By adding `;jsessionid=XXX` to the URL :-)
Vinay Sajip  2009-07-20 19:43:11
I tried that but it doesn't help. I also tried to pass all cookies through SWFUpload.post_params but it still doesn't work.
serg  2009-07-20 19:50:50
Can I somehow get session by id in java? Lets say I just pass sessionid as a regular parameter, can I access this session by id? There used to be HttpSessionContext but it is deprecated now without a replacement.
serg  2009-07-20 19:56:54
Can you show the actual URL which is being passed (and which includes the `;jsessionid=XXX`?
Vinay Sajip  2009-07-20 19:57:20
/fileUpload.html;jsessionid=8EB0F94EB5E5C17FECD3787743B2ED20
serg  2009-07-20 20:02:04
So, I assume fileUpload.html maps to a servlet, right? What do you see in the servlet which is handling the POST request when you try to get the session?
Vinay Sajip  2009-07-20 20:03:51
Right. What exactly are you interested in? I see there new sessionid. org.springframework.web.multipart.MultipartHttpServletRequest is what my request is. Request params contain "upload" and "filename" attributes from sfwupload.
serg  2009-07-20 20:13:02
I'm thinking about the request headers, particularly the *Cookie* header. Presumably there is a session cookie in the request headers which is being used to map to the "other" session. You may have to resort to removing this cookie somehow so that there's only one session ID. Also worth confirning that the session cookie name actually _is_ `jsessionid`. What servlet container are you using?
Vinay Sajip  2009-07-21 07:12:48
If session cookie was there I wouldn't have any problems in the first place I think. Session name is JSESSIONID (I tried it as well).
serg  2009-07-21 16:22:08
I'm not sure what servlet container you're using, so I'm not sure where it looks for a session ID. Normally it would be either in the URL or in a cookie; if you are supplying it in the URL, either it's getting a different value from a cookie and using that, or it's configured to ignore session IDs passed in the URL. Seems somewhat container-specific at the moment.
Vinay Sajip  2009-07-21 17:50:22
A: 

Vinay Sajip's answer hv all to be right, but doesnt work with me.

thats what i've done :

1 - Set my servlet (in this case, doPost) to synchronized.

protected synchronized void doPost(HttpServletRequest request, HttpServletResponse response)

2 - in upload_url from swfupload, i passed through the session ID

upload_url: "Controller?action=33&JSESSIONID=<%=request.getSession().getId()%>",

3 - back to the servlet, i forced the cookie JSESSIONID to my "old" session:

if (request.getParameter("JSESSIONID")!=null) { Cookie userCookie = new Cookie("JSESSIONID", request.getParameter("JSESSIONID")); response.addCookie(userCookie); }

should work. i've used synchronized because to not have a "duplicate" value of sessionId. (or my firebug is crazy)

Fusion  2009-10-02 11:40:02

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java