Through a monitoring tool, I’m noticing that my application has a considerable user session leak. Each day, about a thousand user sessions are created, with none being destroyed. To take the sessions from memory, you need to restart the application server.
In addition to the timeout of the session not being defined, what else could cause a session leak?
What can cause this type of problem in JSF applications is as follows:
- ManagedBeans with life cycles defined as ApplicationScope or SessionScoped that are not properly handled.
- PhaseListener bad writings that record many things in the session and do not remove.
Generally this type of problem is programming and not technology . I suggest you review the application code.