https://issues.apache.org/bugzilla/show_bug.cgi?id=51550
Bug #: 51550
Summary: Empty response instead of error page for
IllegalStateException
Product: Tomcat 7
Version: 7.0.16
Platform: PC
Status: NEW
Severity: normal
Priority: P2
Component: Catalina
AssignedTo: [email protected]
ReportedBy: [email protected]
Classification: Unclassified
IllegalStateException for "Too many active Sessions" error on createSession(..)
sometines results in empty response with HTTP 200 OK status instead of an error
message.
I saw this happening when tomcat trys to create session #(n+1) for a protected
area with FORM based authentication and SessionManager with
maxActiveSessions=n, not depending on whether StandardManager or
PersistentManager is beeing used.
Reproduction:
1) Add webbapps/examples/META-INF/context.xml with following content:
<Context>
<Manager className="org.apache.catalina.session.StandardManager"
maxActiveSessions="1">
</Manager>
</Context>
2) Restart Tomcat
3) Visit http://localhost:8080/examples/jsp/security/protected/
4) Clear cookies in your browser
5) repeat step 3).
Result:
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Cache-Control: private
Expires: Thu, 01 Jan 1970 01:00:00 CET
Transfer-Encoding: chunked
Date: Mon, 25 Jul 2011 13:20:56 GMT
Expected Result:
HTTP/1.1 500 OK
Server: Apache-Coyote/1.1
[...]
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
