Coding a web application using Java 6. Try to implement the session timeout for users.
In the web.xml, I added:
<session-timeout>480</session-timeout> <!-- jsp will expire in 8 hours -->
Now, during the runtime, if a user does not touch the jsp page for 8 hours (after the user has signed in), the session timeout mechanism will kick in. At that point, the server side will automatically execute:
rd = req.getRequestDispatcher("/signin.jsp");
So that the user will have to re-sign in, before continue the work.