Axton If Mid Tier isn't handling cache control headers correct, I'd consider that a bug.
mod_jk is not super when you've got multiple back ends and one dies, or if you're using one of the variety of AJP connectors in JBoss/Tomcat that don't quite handle sockets properly. I've not tested mod_proxy_ajp in anger but prefer mod_proxy for an HTTP reverse proxy. However, this is still all complication. Legacy SSO: For most SSO providers, a JAAS module exists for Tomcat so the tokens are validated on Tomcat. John _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org attend wwrug12 www.wwrug12.com ARSList: "Where the Answers Are"
