Weblogic Authors: Yeshim Deniz, Elizabeth White, Michael Meiner, Michael Bushong, Avi Rosenthal

Related Topics: Weblogic

Weblogic: Article

Session Persistence Performance in BEA WebLogic Server 7.0

Session Persistence Performance in BEA WebLogic Server 7.0

The concept of persisting a user session during the interaction with an application server has matured from maintaining hidden HTML fields and toying with URLs to a stable and robust technology under the J2EE framework. This is what is commonly referred to as an HTTP session - a conversation that spans multiple requests between a client and the server.

The session could be maintained at the various layers on the application architecture. It could reside on the client, on the presentation layer, in the object layer, or even in the database layer of the application. There are two options for maintaining client sessions when session data resides on the client layer. Session information can be maintained in hidden HTML fields or, alternatively, via the use of cookies, which are maintained on the client. This strategy has some inherent limitations, such as only String values can be stored and an increase in the size of session data increases the associated network overheads, which is a detriment to obtaining optimal performance. The lack of any persistence mechanism makes this approach vulnerable to client crashes.

Maintaining sessions on the presentation or the Web application layer is a better option from the perspective of performance, reliability, and usability. This strategy mitigates some of the earlier problems associated with client-side session management. It provides additional options to manage the session data, reduces network overheads, and imposes no constraints on the type and size of the objects that can be stored in the session. It also provides failover mechanisms for session state recovery in the case of server or cluster crashes. In addition, this approach utilizes various application server-specific features (clusters, for instance) that increase the reliability, scalability, and performance of the application.

Session data can also be maintained at the object layer by storing the data in stateful EJBs. This would utilize the Web application layer to store the handles of these stateful EJBs so clients can access the same bean to get the required information. This is a good approach when the application data is predominantly present in the object layer and the Web application layer is used primarily as an interface to the system. This combination results in a lightweight HTTP session and could potentially help improve the performance of the application. However, the overhead as a result of EJB activation and passivation need to be carefully considered.

WebLogic Server 7.0 provides a significant amount of flexibility and choice in determining the appropriate persistence mechanism for a wide variety of application needs. The session management is completely transparent to the user and can be easily configured via the deployment descriptor file of the Web application. This article focuses on the various HTTP session persistence mechanisms and their performance characteristics (in relative terms) for varying sizes of session data. There are five different implementations of session persistence: memory (single-server, nonreplicated), cookie-based, file system persistence, JDBC persistence and in-memory replication (across a cluster). These options, available in WebLogic Server 7.0, are in marked contrast to the competition, which only offers a JDBC persistence mechanism for clustered environments.

For the results shown here, a StringBuffer object is stored in the HTTP session and the size of the session data is varied by increasing the length of the StringBuffer object. The client measures the server response and calculates the throughput for 50 concurrent users. The graphs show the relative performance throughput for various sizes of session data size. In each case, the baseline number represents the throughput obtained when a StringBuffer object of unit length is stored in the session and the throughputs are computed relative to this baseline number.

Memory-Based Session Persistence
This is the default mechanism for managing sessions. The term "memory" refers to the server (JVM process) memory where the Web application is deployed and executed. The session data is maintained (in the JVM process memory) for the life cycle of the session object. To use the memory-based, single-server, nonreplicated persistent storage, set the PersistentStoreType property in the <session-descriptor> element of the WebLogic-specific deployment descriptor, weblogic.xml to memory. When you use memory-based storage, all session information is stored in memory and is therefore lost when you stop and restart WebLogic Server.

This approach provides very good performance but does not provide any failover capability (due to the lack of any data replication as mentioned above). Benchmark results (see Figure 1) indicate stable performance irrespective of the size of the session data.

Cookie-Based Session Persistence
This maintains the session state on the client, which is the biggest difference between this approach and the other mechanisms. There are two ways to set up cookie-based session persistence: set the PersistentStoreType property in the <session-descriptor> element of weblogic.xml to cookie; or, optionally, set a name for the cookie using the PersistentStoreCookieName parameter. The default is WLCOOKIE.

This approach is most useful when you don't need to store large amounts of data in the session and it doesn't require the use of WebLogic clusters. Since the session is stored on the client (and not on the server), you can start and stop WebLogic Servers without losing sessions. The major limitation of cookie-based persistence is that only string attributes can be stored in the session.

File-Based Session Persistence
This is a cost-effective solution, as it relies on the underlying file system to persist data and thus eliminates the need for a database. To configure file-based persistent storage for sessions, set the PersistentStoreType property in the <session-descriptor> element of weblogic.xml to file and specify the directory where WebLogic Server stores the sessions (defined by the PersistentStoreDir attribute in weblogic.xml). WebLogic Server creates various subdirectories under this directory to store session data in the form of files. The creation of this root directory and all other subdirectories and files used to maintain session information is automatically taken care of by the WebLogic Server and these files are generated, updated, and deleted based on the session life-cycle events. The failover mechanism offered under this approach depends upon how the root directory has been defined. This could be set to the name of a directory or a common directory on the local machine, or it could be a shared directory on the network. Making the root directory a shared directory among the different servers in a cluster makes file-persistent sessions resilient to failures.

It is important to ensure that you have enough disk space to store the number of valid sessions multiplied by the size of each session. The size of a session can be determined by looking at the files created under the root directory. (Note that the size of each session can vary as the size of serialized session data changes.) From a performance perspective, file persistence is the slowest mechanism for managing sessions.

JDBC-Based Session Persistence
This configuration doesn't require the use of WebLogic clusters and gives users the option of maintaining the session state for longer periods of time (as the session information is persisted in a database). To configure JDBC-based persistent storage for sessions, set the PersistentStoreType property in the <session-descriptor> element of weblogic.xml to jdbc and specify a JDBC connection pool to be used for persistence storage with the PersistentStorePool property (additional required configuration steps are described in the references at the end of this article).

The use of a database also offers the most reliable solution for data persistence and failover in the event of server crash. Since session data is stored in a database, any server can access the session through use of a session identifier that serves as the client's session identity in the database.

The choice of the database, JDBC driver, and JDBC connection pool configuration affects the overall performance of this approach. While all session persistence mechanisms have to deal with the overheads of data serialization and deserialization, the additional overhead of the database interaction impacts the performance of the JDBC-based session persistence and causes it to under-perform compared with the in-memory replication (see Figures 4, 5, and 6). JDBC-based session persistence caters more toward those applications that require long-term persistent storage of session data and is ideal for situations where failover and data-persistence requirements take preference over performance.

In-Memory-Based Session Persistence
In contrast to the previously described persistence mechanisms, in-memory-based session persistence requires the use of WebLogic clustering and offers the best overall choice in terms of performance and other tradeoffs that may be required in a typical real-world situation. To configure in-memory session persistence, set the PersistentStoreType property in the <session-descriptor> element of weblogic.xml to replicated. In-memory replication is achieved by maintaining a replicated session or in-memory replica of the session state on the the secondary server in a clustered configuration. By default, WebLogic Server attempts to create session state replicas on a different machine than the one that hosts the primary session state. You can further control (via the WebLogic Server console, for instance) where the secondary states are placed using replication groups. A replication group is a preferred list of clustered servers to be used for storing session state replicas.

The primary server handles the user's requests while the WebLogic replication manager creates a secondary server for this user session and maintains a copy of the session object. The replication manager handles all the details of replicating the session data to the remote secondary and keeps this copy in sync with the primary server's session object.

The following Web server and proxy software support in-memory replication for HTTP sessions:

  • WebLogic Server with the HttpClusterServlet
  • Netscape Enterprise Server with the Netscape (proxy) plug-in
  • Apache with the Apache Server (proxy) plug-in
  • Microsoft Internet Information Server with the Microsoft-IIS (proxy) plug-in

    Alternatively, load-balancing hardware may be used instead of these proxy plug-ins. The proxy plug-in (or the load balancer) used between the Web application and the client is configured to fetch the information about the primary and secondary servers in the cluster from the client request. In the event of a primary server failure, the client's request is moved to the secondary server. This now acts as primary server and a new secondary is created for backup. In the event of a secondary server failure, a new secondary is created and the primary server is updated for this change. All of these details are completely transparent to the user. The in-memory-based session persistence mechanism provides excellent performance (see Figure 5) and reliable failover capabilities.

    The various session persistence mechanisms have been designed with a view to meeting a wide-ranging set of problem domains and user requirements. A proper understanding of these mechanisms (and the respective tradeoffs) is essential in deciding on a solution that is best suited for your application. While the graphs shown in Figures 1-5 indicate the impact of data size on the performance of the various session persistence mechanisms, Figure 6 shows the performance for the different session persistence mechanisms using a session data length of 1000 for a StringBuffer object. Since the file-based mechanism has the worst performance, all results are shown relative to this result.

    Further information on configuring WebLogic Server 7.0 to use the different session persistence modes is available at http://e-ddocs.bea.com/wls/docs70/webapplication /sessions.html#session-persistence.

    In addition, the white paper "Achieving Scalability and High Availability for E-Business" (www.bea.com/products/weblogic/server/ paper_wls_clustering.pdf) presents an overview on the various clustering capabilities of BEA WebLogic Server.

  • Comments (0)

    Share your thoughts on this story.

    Add your comment
    You must be signed in to add a comment. Sign-in | Register

    In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

    @ThingsExpo Stories
    The IoT Will Grow: In what might be the most obvious prediction of the decade, the IoT will continue to expand next year, with more and more devices coming online every single day. What isn’t so obvious about this prediction: where that growth will occur. The retail, healthcare, and industrial/supply chain industries will likely see the greatest growth. Forrester Research has predicted the IoT will become “the backbone” of customer value as it continues to grow. It is no surprise that retail is ...
    Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settlement products to hedge funds and investment banks. After, he co-founded a revenue cycle management company where he learned about Bitcoin and eventually Ethereal. Andrew's role at ConsenSys Enterprise is a mul...
    The best way to leverage your Cloud Expo presence as a sponsor and exhibitor is to plan your news announcements around our events. The press covering Cloud Expo and @ThingsExpo will have access to these releases and will amplify your news announcements. More than two dozen Cloud companies either set deals at our shows or have announced their mergers and acquisitions at Cloud Expo. Product announcements during our show provide your company with the most reach through our targeted audiences.
    DevOpsSummit New York 2018, colocated with CloudEXPO | DXWorldEXPO New York 2018 will be held November 11-13, 2018, in New York City. Digital Transformation (DX) is a major focus with the introduction of DXWorldEXPO within the program. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of bus...
    With 10 simultaneous tracks, keynotes, general sessions and targeted breakout classes, @CloudEXPO and DXWorldEXPO are two of the most important technology events of the year. Since its launch over eight years ago, @CloudEXPO and DXWorldEXPO have presented a rock star faculty as well as showcased hundreds of sponsors and exhibitors! In this blog post, we provide 7 tips on how, as part of our world-class faculty, you can deliver one of the most popular sessions at our events. But before reading...
    DXWorldEXPO LLC announced today that "Miami Blockchain Event by FinTechEXPO" has announced that its Call for Papers is now open. The two-day event will present 20 top Blockchain experts. All speaking inquiries which covers the following information can be submitted by email to [email protected] Financial enterprises in New York City, London, Singapore, and other world financial capitals are embracing a new generation of smart, automated FinTech that eliminates many cumbersome, slow, and expe...
    Cloud Expo | DXWorld Expo have announced the conference tracks for Cloud Expo 2018. Cloud Expo will be held June 5-7, 2018, at the Javits Center in New York City, and November 6-8, 2018, at the Santa Clara Convention Center, Santa Clara, CA. Digital Transformation (DX) is a major focus with the introduction of DX Expo within the program. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive ov...
    DXWordEXPO New York 2018, colocated with CloudEXPO New York 2018 will be held November 11-13, 2018, in New York City and will bring together Cloud Computing, FinTech and Blockchain, Digital Transformation, Big Data, Internet of Things, DevOps, AI, Machine Learning and WebRTC to one location.
    DXWorldEXPO | CloudEXPO are the world's most influential, independent events where Cloud Computing was coined and where technology buyers and vendors meet to experience and discuss the big picture of Digital Transformation and all of the strategies, tactics, and tools they need to realize their goals. Sponsors of DXWorldEXPO | CloudEXPO benefit from unmatched branding, profile building and lead generation opportunities.
    DXWorldEXPO LLC announced today that ICOHOLDER named "Media Sponsor" of Miami Blockchain Event by FinTechEXPO. ICOHOLDER give you detailed information and help the community to invest in the trusty projects. Miami Blockchain Event by FinTechEXPO has opened its Call for Papers. The two-day event will present 20 top Blockchain experts. All speaking inquiries which covers the following information can be submitted by email to [email protected] Miami Blockchain Event by FinTechEXPO also offers s...
    Dion Hinchcliffe is an internationally recognized digital expert, bestselling book author, frequent keynote speaker, analyst, futurist, and transformation expert based in Washington, DC. He is currently Chief Strategy Officer at the industry-leading digital strategy and online community solutions firm, 7Summits.
    Widespread fragmentation is stalling the growth of the IIoT and making it difficult for partners to work together. The number of software platforms, apps, hardware and connectivity standards is creating paralysis among businesses that are afraid of being locked into a solution. EdgeX Foundry is unifying the community around a common IoT edge framework and an ecosystem of interoperable components.
    Digital Transformation and Disruption, Amazon Style - What You Can Learn. Chris Kocher is a co-founder of Grey Heron, a management and strategic marketing consulting firm. He has 25+ years in both strategic and hands-on operating experience helping executives and investors build revenues and shareholder value. He has consulted with over 130 companies on innovating with new business models, product strategies and monetization. Chris has held management positions at HP and Symantec in addition to ...
    Cloud-enabled transformation has evolved from cost saving measure to business innovation strategy -- one that combines the cloud with cognitive capabilities to drive market disruption. Learn how you can achieve the insight and agility you need to gain a competitive advantage. Industry-acclaimed CTO and cloud expert, Shankar Kalyana presents. Only the most exceptional IBMers are appointed with the rare distinction of IBM Fellow, the highest technical honor in the company. Shankar has also receive...
    Enterprises have taken advantage of IoT to achieve important revenue and cost advantages. What is less apparent is how incumbent enterprises operating at scale have, following success with IoT, built analytic, operations management and software development capabilities - ranging from autonomous vehicles to manageable robotics installations. They have embraced these capabilities as if they were Silicon Valley startups.
    The standardization of container runtimes and images has sparked the creation of an almost overwhelming number of new open source projects that build on and otherwise work with these specifications. Of course, there's Kubernetes, which orchestrates and manages collections of containers. It was one of the first and best-known examples of projects that make containers truly useful for production use. However, more recently, the container ecosystem has truly exploded. A service mesh like Istio addr...
    Poor data quality and analytics drive down business value. In fact, Gartner estimated that the average financial impact of poor data quality on organizations is $9.7 million per year. But bad data is much more than a cost center. By eroding trust in information, analytics and the business decisions based on these, it is a serious impediment to digital transformation.
    Predicting the future has never been more challenging - not because of the lack of data but because of the flood of ungoverned and risk laden information. Microsoft states that 2.5 exabytes of data are created every day. Expectations and reliance on data are being pushed to the limits, as demands around hybrid options continue to grow.
    Business professionals no longer wonder if they'll migrate to the cloud; it's now a matter of when. The cloud environment has proved to be a major force in transitioning to an agile business model that enables quick decisions and fast implementation that solidify customer relationships. And when the cloud is combined with the power of cognitive computing, it drives innovation and transformation that achieves astounding competitive advantage.
    As IoT continues to increase momentum, so does the associated risk. Secure Device Lifecycle Management (DLM) is ranked as one of the most important technology areas of IoT. Driving this trend is the realization that secure support for IoT devices provides companies the ability to deliver high-quality, reliable, secure offerings faster, create new revenue streams, and reduce support costs, all while building a competitive advantage in their markets. In this session, we will use customer use cases...