Delete session persistence?

[dward]

Is there anyway to delete a persistence key or at least set a timeout for the key?

[michael]

No, there isn't.  The only way for entries to get kicked out is by not being used while new entries are added to the system.  When the capacity of the cache is reached, the entry which hasn't been used longest is removed to make space for new entries.

The cache size can be set via System- > Global Settings -> Cache Settings.

[Owen]

You can index the session persistence with a cookie; then deleting the cookie will be sufficient to make ZXTM 'forget' the session persistence.  Depending on the application, you may be able to use a cookie that the application sets, or you can create your own cookie specially for this purpose.

For example, suppose that you want to persist all jsp pages to the same back-end server, but 'forget' the session persistence once the user accesses the 'logout.jsp' page.  Something like the following, using a 'Universal Session Persistence' class, might do the trick:


$url = http.getPath();

# We're only interested in .jsp pages
if( ! string.endswith( $url, ".jsp" ) ) break;

# Get the session persistence cookie
$cookie = http.getCookie( "MySession" );

# If the user hasn't got a cookie (i.e. first time in, or we've deleted the session persistence)
# create a new, random cookie.
if( ! $cookie ) {
   $rand = math.random( 0xfffffff ) . sys.time() . request.getRemoteIP();
   $cookie = string.hexencode( string.hashMD5( $rand ) );

   http.setResponseCookie( "MySession", $cookie );
}

if( $url == "/logout.jsp" ) {
   # Clear the cookie in the response, so that next time in we create a new one
   http.setResponseCookie( "MySession", "" );
}

# Persist on the value of the cookie
connection.setPersistenceKey( $cookie );
connection.setPersistence( "My Session Persistence Class" );