https://bz.apache.org/bugzilla/show_bug.cgi?id=57865
Bug ID: 57865
Summary: session.invalidate does not work when during startup
war file is deployed
Product: Tomcat 7
Version: 7.0.61
Hardware: PC
OS: Linux
Status: NEW
Severity: critical
Priority: P2
Component: Catalina
Assignee: [email protected]
Reporter: [email protected]
We have a webapp using org.apache.catalina.authenticator.SingleSignOn Valve and
defining security constraints and Form based authentication.
calling session.invalidate doesn't properly destroy the session and Principal
remains set only when war file is deployed during tomcat startup.
Proceeding with a restart without any war unpacking/deploy works properly.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
