DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=44354>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=44354 Summary: cookies=false not honored when jsessionid comes from a cookie Product: Tomcat 5 Version: 5.5.25 Platform: All OS/Version: All Status: NEW Severity: normal Priority: P2 Component: Catalina AssignedTo: [EMAIL PROTECTED] ReportedBy: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] setting cookies=false in the context does not work if the session comes from a cookie. Here is the scenario: 1. Start tomcat with cookies=true. 2. Connect to this tomcat and cookies will be used to store session info. 3. change cookies=false and restart tomcat 4. Connect again using the same user and browser as in #2 note that cookies are still being used. --> This is the bug (should use URL-Rewrite) 5. connect using a new user/browser and URL rewrite is used. If cookes=false is set then URL rewrite should always be used (and the session should not be stored in a cookie) regardless of where the initial session id came from. -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
