Summary
Congratulations! This is the point at which you reach around and pat yourself on the back. With this component you have finally completed your tour of a large swath of the Tomcat request processing machinery.
In this chapter, we looked at the reason for the existence of sessions. We also considered the importance of unique session identifiers to security. We reviewed the mechanism of Java serialization and considered how Tomcat leverages it to persist sessions.
The manager component is responsible for the creation and management of sessions, and so we reviewed Tomcat's implementations of this component. We also looked at options to persist sessions across manager restarts.
We ended the chapter by looking at a file store based persistent manager implementation, which supports the persistence of sessions to a configured directory.