tags:

views:

90

answers:

2
Q: 

JSP Problem ussing implicit object (session) in a function

Can the object of type HttpSession called session be accessed from a function?

In a simple jsp page I have a function(see below) defined in the header of the page, and set to an onclick handle of for a button. When I press this button, I'll never see the second alert message. If I do something in the body of the page (like Session ID: <%= session.getId() %> ) I have no trouble accessing it. What newbie mistake am I making? 

     function doTest()
 {
  alert('Preforming test 122333232');

      String sessionId = session.getId();

      alert('After access');

      if(sessionId == null)
      {
        alert('session id is null?');
      }

Thanks

A: 

I may be totally missing what you're doing here, but the function you've provided looks like javascript. If that is the case, then you should change it to:

var sessionId = "<%= session.getId() %>";

The generated JSP code will output HTML with your javascript function intact, but it will replace that JSP expression with the session id.

Shaun  2009-12-18 16:56:02
Yes it is javascript but when I try what you suggest I get a compile error when I test the page.
 2009-12-18 17:33:35
I had to remove the ; after the getId() call. I.e. var sessionId = "<%= session.getId(); %>";
 2009-12-18 17:42:34
Sorry about that, I should've noticed that extra semicolon. Fixed it in my response now.
Shaun  2009-12-18 19:05:57
A: 

You're confusing/mixing Java/JSP with Javascript. Those are entirely distinct languages, each running in its own environment. Java/JSP runs at the server machine, produces HTML/CSS/JS output, sends it as HTTP response to the client machine. When the client machine retrieves the response, it starts to parse/interpret/execute HTML/CSS/JS. Java/JSP doesn't run at the client machine. Javascript doesn't run at the server machine.

To access any Java variables in Javascript you need to let JSP print it as if it is a Javascript variable:

var sessionId = '${pageContext.session.id}';

If you request this JSP page, then it will produce something like the following in the HTML/CSS/JS output (rightclick page in browser and choose View Source to see it yourself):

var sessionId = 'F876B130590427C4E35DDE2C7CC0EB3D';

This way JS can use it further while running at client machine.

To learn more about the wall between Java/JSP and Javascript you may find this article useful as well: http://balusc.blogspot.com/2009/05/javajspjsf-and-javascript.html

Note that I don't recommend to use scriptlets (the <% %> things) for this. Its use is discouraged since a decade and they are considered bad practice nowadays.

BalusC  2009-12-18 17:37:28

related questions

What is typically the length of your optimal coding session?
What's the most current, good practice, and easiest way to use sessions in PHP?
What can cause an ASP.NET worker process to be recycled?
How do I explicitly set asp.net sessions to ONLY expire on closing the browser or explicit logou?
session variable mixup in ASP.NET?
In Classic asp, can I store a database connection in the Session object?
What are the advantages and disadvantages of the Session Façade Core J2EE Pattern?
Different values of GetHashCode for inproc and stateserver session variables
Best way for allowing subdomain session cookies using Tomcat
Is there a way to specify a different session store with Tomcat?
PHP: $_SESSION - What are the pros and cons of storing temporarily used data in the $_SESSION variable
What is the best way to handle sessions for a PHP site on multiple hosts?
How much data can/should you store in a users session object?
ASP.Net Session_Start event not firing
Logging image downloads
ASP.Net: If I have the Session ID, Can I get the Session object?
Secure session cookies in ASP.NET over HTTPS
Django Sessions
Can I put an ASP.Net session ID in a hidden form field?
Always including the user in the django template context
Rails - recovering database from Production.log
Most efficient way to get data from the database to session
What is the best way to prevent session hijacking?
FOSS ASP.Net Session Replication Solution?
How do I best detect an ASP.NET expired session?