DO NOT REPLY [Bug 45921] Session ID not read from URL when cookie value is not valid

bugzilla Wed, 01 Oct 2008 07:48:21 -0700

https://issues.apache.org/bugzilla/show_bug.cgi?id=45921



Mark Thomas <[EMAIL PROTECTED]> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |WONTFIX




--- Comment #1 from Mark Thomas <[EMAIL PROTECTED]>  2008-10-01 07:47:29 PST ---
The fall-back mechanism you describe is not part of the Servlet specification. 

The specification makes clear that URL rewriting is only one possible solution
for clients that do not support cookies. Containers are not required to support
URL rewriting; they are only required to provide a mechanism to provide session
tracking for clients that do not support cookies.

Further, the wording of SRV.7.1.1 indicates that a session ID from a cookie
takes priority over one from a url.


-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

DO NOT REPLY [Bug 45921] Session ID not read from URL when cookie value is not valid

Reply via email to