Class SessionToken

  • All Implemented Interfaces:
    Externalizable, Serializable

    public class SessionToken
    extends Object
    implements Externalizable
    This class is an immutable identifier for a unique session that also maintains the name of the principal for that session. Since this class can be used to authenticate a user, it must be secure in transit if sent to the client. Also it should only be sent to the client who creates the session.
    See Also:
    Serialized Form