| The SessionValidator attempts to retrive the User object from the
Servlet API session that is associated with the request. If the
data cannot be retrieved, it is handled here. If the user has not
been marked as being logged into the system, the user is rejected
and the screen is set to the screen.homepage value in
TurbineResources.properties.
Other systems generally have a database table which stores this
information, but we take advantage of the Servlet API here to save
a hit to the database for each and every connection that a user
makes.
This action is special in that it should only be executed by the
Turbine servlet.
author: Dave Bryson version: $Id: SessionValidator.java 264148 2005-08-29 14:21:04Z henning $ |