1. /*

  2.  * The Apache Software License, Version 1.1

  3.  *

  4.  * Copyright (c) 1999 The Apache Software Foundation.  All rights 

  5.  * reserved.

  6.  *

  7.  * Redistribution and use in source and binary forms, with or without

  8.  * modification, are permitted provided that the following conditions

  9.  * are met:

  10.  *

  11.  * 1. Redistributions of source code must retain the above copyright

  12.  *    notice, this list of conditions and the following disclaimer. 

  13.  *

  14.  * 2. Redistributions in binary form must reproduce the above copyright

  15.  *    notice, this list of conditions and the following disclaimer in

  16.  *    the documentation and/or other materials provided with the

  17.  *    distribution.

  18.  *

  19.  * 3. The end-user documentation included with the redistribution, if

  20.  *    any, must include the following acknowlegement:  

  21.  *       "This product includes software developed by the 

  22.  *        Apache Software Foundation (http://www.apache.org/)."

  23.  *    Alternately, this acknowlegement may appear in the software itself,

  24.  *    if and wherever such third-party acknowlegements normally appear.

  25.  *

  26.  * 4. The names "The Jakarta Project", "Tomcat", and "Apache Software

  27.  *    Foundation" must not be used to endorse or promote products derived

  28.  *    from this software without prior written permission. For written 

  29.  *    permission, please contact apache@apache.org.

  30.  *

  31.  * 5. Products derived from this software may not be called "Apache"

  32.  *    nor may "Apache" appear in their names without prior written

  33.  *    permission of the Apache Group.

  34.  *

  35.  * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED

  36.  * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES

  37.  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE

  38.  * DISCLAIMED.  IN NO EVENT SHALL THE APACHE SOFTWARE FOUNDATION OR

  39.  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

  40.  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT

  41.  * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF

  42.  * USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND

  43.  * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,

  44.  * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT

  45.  * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

  46.  * SUCH DAMAGE.

  47.  * ====================================================================

  48.  *

  49.  * This software consists of voluntary contributions made by many

  50.  * individuals on behalf of the Apache Software Foundation.  For more

  51.  * information on the Apache Software Foundation, please see

  52.  * <http://www.apache.org/>.

  53.  *

  54.  * ====================================================================

  55.  *

  56.  * This source code implements specifications defined by the Java

  57.  * Community Process. In order to remain compliant with the specification

  58.  * DO NOT add / change / or delete method signatures!

  59.  */

  60. 

  61. package javax.servlet.http;

  62. 

  63. import java.util.Enumeration;

  64. import javax.servlet.ServletContext;

  65. 

  66. /**

  67.  *

  68.  * Provides a way to identify a user across more than one page

  69.  * request or visit to a Web site and to store information about that user.

  70.  *

  71.  * <p>The servlet container uses this interface to create a session

  72.  * between an HTTP client and an HTTP server. The session persists

  73.  * for a specified time period, across more than one connection or

  74.  * page request from the user. A session usually corresponds to one 

  75.  * user, who may visit a site many times. The server can maintain a 

  76.  * session in many ways such as using cookies or rewriting URLs.

  77.  *

  78.  * <p>This interface allows servlets to 

  79.  * <ul>

  80.  * <li>View and manipulate information about a session, such as

  81.  *     the session identifier, creation time, and last accessed time

  82.  * <li>Bind objects to sessions, allowing user information to persist 

  83.  *     across multiple user connections

  84.  * </ul>

  85.  *

  86.  * <p>When an application stores an object in or removes an object from a

  87.  * session, the session checks whether the object implements

  88.  * {@link HttpSessionBindingListener}. If it does, 

  89.  * the servlet notifies the object that it has been bound to or unbound 

  90.  * from the session. Notifications are sent after the binding methods complete. 

  91.  * For session that are invalidated or expire, notifications are sent after

  92.  * the session has been invalidatd or expired.

  93.  *

  94.  * <p> When container migrates a session between VMs in a distributed container

  95.  * setting, all session atributes implementing the {@link HttpSessionActivationListener}

  96.  * interface are notified.

  97.  * 

  98.  * <p>A servlet should be able to handle cases in which

  99.  * the client does not choose to join a session, such as when cookies are

  100.  * intentionally turned off. Until the client joins the session,

  101.  * <code>isNew</code> returns <code>true</code>.  If the client chooses 

  102.  * not to join

  103.  * the session, <code>getSession</code> will return a different session

  104.  * on each request, and <code>isNew</code> will always return

  105.  * <code>true</code>.

  106.  *

  107.  * <p>Session information is scoped only to the current web application

  108.  * (<code>ServletContext</code>), so information stored in one context

  109.  * will not be directly visible in another.

  110.  *

  111.  * @author	Various

  112.  * @version	$Version$

  113.  *

  114.  *

  115.  * @see 	HttpSessionBindingListener

  116.  * @see 	HttpSessionContext

  117.  *

  118.  */

  119. 

  120. public interface HttpSession {

  121. 

  122. 

  123. 

  124. 

  125.     /**

  126.      *

  127.      * Returns the time when this session was created, measured

  128.      * in milliseconds since midnight January 1, 1970 GMT.

  129.      *

  130.      * @return				a <code>long</code> specifying

  131.      * 					when this session was created,

  132.      *					expressed in 

  133.      *					milliseconds since 1/1/1970 GMT

  134.      *

  135.      * @exception IllegalStateException	if this method is called on an

  136.      *					invalidated session

  137.      *

  138.      */

  139. 

  140.     public long getCreationTime();

  141.     

  142.     

  143.     

  144.     

  145.     /**

  146.      *

  147.      * Returns a string containing the unique identifier assigned 

  148.      * to this session. The identifier is assigned 

  149.      * by the servlet container and is implementation dependent.

  150.      * 

  151.      * @return				a string specifying the identifier

  152.      *					assigned to this session

  153.      *

  154.      * @exeption IllegalStateException	if this method is called on an

  155.      *					invalidated session

  156.      *

  157.      */

  158. 

  159.     public String getId();

  160.     

  161.     

  162.     

  163. 

  164.     /**

  165.      *

  166.      * Returns the last time the client sent a request associated with

  167.      * this session, as the number of milliseconds since midnight

  168.      * January 1, 1970 GMT, and marked by the time the container recieved the request. 

  169.      *

  170.      * <p>Actions that your application takes, such as getting or setting

  171.      * a value associated with the session, do not affect the access

  172.      * time.

  173.      *

  174.      * @return				a <code>long</code>

  175.      *					representing the last time 

  176.      *					the client sent a request associated

  177.      *					with this session, expressed in 

  178.      *					milliseconds since 1/1/1970 GMT

  179.      *

  180.      * @exeption IllegalStateException	if this method is called on an

  181.      *					invalidated session

  182.      *

  183.      */

  184. 

  185.     public long getLastAccessedTime();

  186.     

  187.     

  188.     /**

  189.     * Returns the ServletContext to which this session belongs.

  190.     *    

  191.     * @return The ServletContext object for the web application

  192.     * @since 2.3

  193.     */

  194. 

  195.     public ServletContext getServletContext();

  196. 

  197. 

  198.     /**

  199.      *

  200.      * Specifies the time, in seconds, between client requests before the 

  201.      * servlet container will invalidate this session.  A negative time

  202.      * indicates the session should never timeout.

  203.      *

  204.      * @param interval		An integer specifying the number

  205.      * 				of seconds 

  206.      *

  207.      */

  208.     

  209.     public void setMaxInactiveInterval(int interval);

  210. 

  211. 

  212. 

  213. 

  214.    /**

  215.     * Returns the maximum time interval, in seconds, that 

  216.     * the servlet container will keep this session open between 

  217.     * client accesses. After this interval, the servlet container

  218.     * will invalidate the session.  The maximum time interval can be set

  219.     * with the <code>setMaxInactiveInterval</code> method.

  220.     * A negative time indicates the session should never timeout.

  221.     *  

  222.     *

  223.     * @return		an integer specifying the number of

  224.     *			seconds this session remains open

  225.     *			between client requests

  226.     *

  227.     * @see		#setMaxInactiveInterval

  228.     *

  229.     *

  230.     */

  231. 

  232.     public int getMaxInactiveInterval();

  233.     

  234.     

  235. 

  236. 

  237.    /**

  238.     *

  239.     * @deprecated 	As of Version 2.1, this method is

  240.     *			deprecated and has no replacement.

  241.     *			It will be removed in a future

  242.     *			version of the Java Servlet API.

  243.     *

  244.     */

  245. 

  246.     public HttpSessionContext getSessionContext();

  247.     

  248.     

  249.     

  250.     

  251.     /**

  252.      *

  253.      * Returns the object bound with the specified name in this session, or

  254.      * <code>null</code> if no object is bound under the name.

  255.      *

  256.      * @param name		a string specifying the name of the object

  257.      *

  258.      * @return			the object with the specified name

  259.      *

  260.      * @exception IllegalStateException	if this method is called on an

  261.      *					invalidated session

  262.      *

  263.      */

  264.   

  265.     public Object getAttribute(String name);

  266.     

  267.     

  268.     

  269.     

  270.     /**

  271.      *

  272.      * @deprecated 	As of Version 2.2, this method is

  273.      * 			replaced by {@link #getAttribute}.

  274.      *

  275.      * @param name		a string specifying the name of the object

  276.      *

  277.      * @return			the object with the specified name

  278.      *

  279.      * @exception IllegalStateException	if this method is called on an

  280.      *					invalidated session

  281.      *

  282.      */

  283.   

  284.     public Object getValue(String name);

  285.     

  286.     

  287.     

  288. 

  289.     /**

  290.      *

  291.      * Returns an <code>Enumeration</code> of <code>String</code> objects

  292.      * containing the names of all the objects bound to this session. 

  293.      *

  294.      * @return			an <code>Enumeration</code> of 

  295.      *				<code>String</code> objects specifying the

  296.      *				names of all the objects bound to

  297.      *				this session

  298.      *

  299.      * @exception IllegalStateException	if this method is called on an

  300.      *					invalidated session

  301.      *

  302.      */

  303.     

  304.     public Enumeration getAttributeNames();

  305.     

  306.     

  307.     

  308. 

  309.     /**

  310.      *

  311.      * @deprecated 	As of Version 2.2, this method is

  312.      * 			replaced by {@link #getAttributeNames}

  313.      *

  314.      * @return				an array of <code>String</code>

  315.      *					objects specifying the

  316.      *					names of all the objects bound to

  317.      *					this session

  318.      *

  319.      * @exception IllegalStateException	if this method is called on an

  320.      *					invalidated session

  321.      *

  322.      */

  323.     

  324.     public String[] getValueNames();

  325.     

  326.     

  327.     

  328. 

  329.     /**

  330.      * Binds an object to this session, using the name specified.

  331.      * If an object of the same name is already bound to the session,

  332.      * the object is replaced.

  333.      *

  334.      * <p>After this method executes, and if the new object

  335.      * implements <code>HttpSessionBindingListener</code>,

  336.      * the container calls 

  337.      * <code>HttpSessionBindingListener.valueBound</code>. The container then   

  338.      * notifies any <code>HttpSessionAttributeListener</code>s in the web 

  339.      * application.

  340.      

  341.      * <p>If an object was already bound to this session of this name

  342.      * that implements <code>HttpSessionBindingListener</code>, its 

  343.      * <code>HttpSessionBindingListener.valueUnbound</code> method is called.

  344.      *

  345.      * <p>If the value passed in is null, this has the same effect as calling 

  346.      * <code>removeAttribute()<code>.

  347.      *

  348.      *

  349.      * @param name			the name to which the object is bound;

  350.      *					cannot be null

  351.      *

  352.      * @param value			the object to be bound

  353.      *

  354.      * @exception IllegalStateException	if this method is called on an

  355.      *					invalidated session

  356.      *

  357.      */

  358.  

  359.     public void setAttribute(String name, Object value);

  360.     

  361. 

  362. 

  363. 

  364.     

  365.     /**

  366.      *

  367.      * @deprecated 	As of Version 2.2, this method is

  368.      * 			replaced by {@link #setAttribute}

  369.      *

  370.      * @param name			the name to which the object is bound;

  371.      *					cannot be null

  372.      *

  373.      * @param value			the object to be bound; cannot be null

  374.      *

  375.      * @exception IllegalStateException	if this method is called on an

  376.      *					invalidated session

  377.      *

  378.      */

  379.  

  380.     public void putValue(String name, Object value);

  381. 

  382. 

  383. 

  384. 

  385. 

  386.     /**

  387.      *

  388.      * Removes the object bound with the specified name from

  389.      * this session. If the session does not have an object

  390.      * bound with the specified name, this method does nothing.

  391.      *

  392.      * <p>After this method executes, and if the object

  393.      * implements <code>HttpSessionBindingListener</code>,

  394.      * the container calls 

  395.      * <code>HttpSessionBindingListener.valueUnbound</code>. The container

  396.      * then notifies any <code>HttpSessionAttributeListener</code>s in the web 

  397.      * application.

  398.      * 

  399.      * 

  400.      *

  401.      * @param name				the name of the object to

  402.      *						remove from this session

  403.      *

  404.      * @exception IllegalStateException	if this method is called on an

  405.      *					invalidated session

  406.      */

  407. 

  408.     public void removeAttribute(String name);

  409. 

  410. 

  411. 

  412. 

  413. 

  414.     /**

  415.      *

  416.      * @deprecated 	As of Version 2.2, this method is

  417.      * 			replaced by {@link #removeAttribute}

  418.      *

  419.      * @param name				the name of the object to

  420.      *						remove from this session

  421.      *

  422.      * @exception IllegalStateException	if this method is called on an

  423.      *					invalidated session

  424.      */

  425. 

  426.     public void removeValue(String name);

  427. 

  428. 

  429. 

  430. 

  431.     /**

  432.      *

  433.      * Invalidates this session then unbinds any objects bound

  434.      * to it. 

  435.      *

  436.      * @exception IllegalStateException	if this method is called on an

  437.      *					already invalidated session

  438.      *

  439.      */

  440. 

  441.     public void invalidate();

  442.     

  443.     

  444.     

  445.     

  446.     /**

  447.      *

  448.      * Returns <code>true</code> if the client does not yet know about the

  449.      * session or if the client chooses not to join the session.  For 

  450.      * example, if the server used only cookie-based sessions, and

  451.      * the client had disabled the use of cookies, then a session would

  452.      * be new on each request.

  453.      *

  454.      * @return 				<code>true</code> if the 

  455.      *					server has created a session, 

  456.      *					but the client has not yet joined

  457.      *

  458.      * @exception IllegalStateException	if this method is called on an

  459.      *					already invalidated session

  460.      *

  461.      */

  462. 

  463.     public boolean isNew();

  464. }

  465.