StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POSession management for a RESTful Web Service using Jersey
primarykey
Id
12150076
data
AcceptedAnswerId
12268861
AnswerCount
2
ClosedDate
CommentCount
6
CommunityOwnedDate
CreationDate
2012-08-27T21:48:57.270
FavoriteCount
6
LastActivityDate
2014-03-08T10:03:53.287
LastEditDate
2017-05-23T12:01:02.370
LastEditorUserId
-1
OwnerUserId
1315447
ParentId
0
PostTypeId
1
Score
6
ViewCount
21630
LastEditorDisplayName
text
Body
I am developing a <a href="http://www.vogella.com/articles/REST/article.html" rel="nofollow noreferrer">Restful Web Service using Jersey</a> between my <code>Android, iPhone</code> apps and MySQL. I also use <code>Hibernate</code> to map the data to the database. I have a sessionId (key). it is generated when user Login to the system. In <code>User</code> class: <pre><code>public Session daoCreateSession() { if (session == null) { session = new Session(this); } else { session.daoUpdate(); } return session; } </code></pre> In <code>Session</code> Class: <pre><code>Session(User user) { this.key = UUID.randomUUID().toString(); this.user = user; this.date = new Date(); } void daoUpdate() { this.key = UUID.randomUUID().toString(); this.date = new Date(); } </code></pre> When user Sign in to the system successfully, I send this sessionId to the Mobile app client. Then when I want to get some information from database based on the logged in user, I check this <a href="http://jersey.576304.n2.nabble.com/Security-Basic-Session-or-Encrypted-Key-td3490249.html" rel="nofollow noreferrer">Session key</a> as authentication <code>in the REST Services</code> for every request. For example for the list of project that user is involved in, I use <code>client.GET(SERVER_ADDRESS/project/get/{SessionID})</code> insetead of <code>client.GET(SERVER_ADDRESS/project/get/{username})</code>. And if it is not a valid session key, I'll send back to the client a 403 forbidden code. You can also take a look <a href="https://stackoverflow.com/questions/4973454/session-management-how-to-generate-authentication-token-for-rest-service-je">here</a> The thing is I am not sure about my approach. what do you think about <code>cons</code> in this approach considering for Jersey and a mobile app? I have researched about <code>Spring Security</code>. I still don't know can I use it instead, if the <code>Session key</code> approach is not good. Can you help me?
Tags
<spring><hibernate><rest><spring-security><jersey>
Title
Session management for a RESTful Web Service using Jersey
singulars
PostAcceptedAnswerId
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USCommunity
UserOwnerUserId
1. USAli
plurals
PostLinksPostIdRelatedPostId
1. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
2. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
3. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
2. PO
 singulars
 PostTypePostTypeId
 PTAnswer
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POSession management for a RESTful Web Service using Jersey
 UserUserId
 USAli
 VoteTypeVoteTypeId
 VTBountyStart
2. VO
 singulars
 PostPostId
 POSession management for a RESTful Web Service using Jersey
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. COThis is not RESTful. The `SessionID` will change so your URLs will *not* reference Resources.
 singulars
 PostPostId
 POSession management for a RESTful Web Service using Jersey
 UserUserId
 This table or related slice is empty.
2. COWhy?I just use [this approach](http://jersey.576304.n2.nabble.com/Security-Basic-Session-or-Encrypted-Key-td3490249.html)
 singulars
 PostPostId
 POSession management for a RESTful Web Service using Jersey
 UserUserId
 USAli
3. COAn URL identifies a Resources. What are your resources?
 singulars
 PostPostId
 POSession management for a RESTful Web Service using Jersey
 UserUserId
 This table or related slice is empty.

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.