Implementing session timeout in playframework

By -
According to play documentation "There is no technical timeout for the Session. It expires when the user closes the web browser. If you need a functional timeout for a specific application, just store a timestamp into the user Session and use it however your application needs (e.g. for a maximum session duration, maximum inactivity duration, etc.)."

So I used the following way to implement a session timeout. Following custom authenticator class was used to implement this.

  public class ValidateUserSessionAction extends Security.Authenticator{

    @Override
    public String getUsername(Http.Context ctx) {
        long currentTime=System.currentTimeMillis();
        long timeOut=Long.parseLong(Play.application().configuration().getString("sessionTimeout")) * 1000 * 60;
        String temp=ctx.session().get(Constants.LAST_SEEN_KEY);
        if (temp == null) {
            temp = String.valueOf(currentTime);
        }
        if((currentTime-Long.parseLong(temp))<timeOut) {
            //If multiple instances are running, time should be synchronized between nodes
            ctx.session().put(Constants.LAST_SEEN_KEY, String.valueOf(System.currentTimeMillis()));
            return ctx.session().get(Constants.SESSION_USER_KEY);
        }else{
            ctx.session().clear();
            return null;
        }
    }

    @Override
    public Result onUnauthorized(Http.Context ctx) {
        return redirect(controllers.routes.UserController.signIn());
    }

    
}

Above authenticator class can be used to validate user actions like below.
 
 @Security.Authenticated(ValidateUserSessionAction.class)
    public static F.Promise<result< updateEmail() {
        //do something
        return ok();
    }

Comments

Post a Comment

Popular posts from this blog

Create new Java Class files at runtime

By -
When we write programs usual method is to write all the code compile it and run. But when we try to complex things some times we may want to generate a new class and use it at runtime. As an example I wanted to create a class which parse a xml message and create a new Java object from that data. This is used in web server. So that result object varies according to the web service which is deployed. The solution was to inspect the service at deployment time and create a new parser class according to that in the service deployment time. It has to be noted that this parser had to be generated as a .class file and dynamically added to the classpath. So the result was to use a bytecode manupulation library. There are few bytecode manuplulation libraries available as ASM and JavaAssist . I used JavaAssist for this. The reason for using JavaAssist is it is simple to create a new class from the scratch using JavaAssit. When we create new class files using JavaAssit we have to create all t...
Read more

Using iReport plugin for Jasper Reports in Netbeans

By -
Image
Jasper reports is a very useful frame work for genarating reports, saving them as PDF,etc. iReport make it more easy because we can design reports using graphical methods from it. Also it is available as a plugin for NetBeans. You can download iReport Netbeans plugin from here . there are for files in the Zip folder. You can install them by at one by selecting all of them when you select the plugin to install from Netbeans (If you don't know how to install a plugin for Netbeans search for a tutorial). To use Jasper Reports in your application you have to add some libraries. But the problem is these libraries are heavily coupled with each other. So downloading each one is a very difficult task because there are problems like versions don't match, some libraries are outdated, etc.etc. There is a easy method. After installing the plugin Netbeans will automatically add the Jasper Reports library to its library collection. But it is missing one important...
Read more

Creating a Pentaho BI server cluster

By -
Image
Note - This is applicable to Pentaho BI server community edition 5.x only. Pentaho BI server provides a large set of features which are essential for  BI applications. To use this in production we might need to create a CDA cluster to maintain high availability as well as load balancing. To create a cluster we need to configure BI server instances to use a common data source to store configurations. I configured the following setup for this. Follow these steps to create the cluster. Install MySQL servers and setup master master replication. Make sure you have installed Oracle Java 7 in all nodes. Using other java versions will cause runtime errors. Follow  this  document to to install a CDA instance. Make sure to follow the document named "Install with Your Own BA Repository" and follow the configurations related to MySQL.  Start the server and install all the components needed. Modify the cluster documentation as mentioned in this document.  htt...
Read more