Author: taylor
Date: Thu Nov 30 19:07:58 2017
New Revision: 1816745
URL: http://svn.apache.org/viewvc?rev=1816745&view=rev
Log:
JS2-1359: example of using changeSessionIdOnAuthentication feature in Tomcat.
Set to true here, which is default, and is the secure, recommended setting by
Tomcat. If your portal requires the 'old' Jetspeed behavior of retaining the
session id on login, then set this setting to false
Modified:
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml
Modified:
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml
URL:
http://svn.apache.org/viewvc/portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml?rev=1816745&r1=1816744&r2=1816745&view=diff
==============================================================================
---
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml
(original)
+++
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml
Thu Nov 30 19:07:58 2017
@@ -29,8 +29,8 @@ limitations under the License.
factory="org.apache.commons.dbcp.BasicDataSourceFactory"
type="javax.sql.DataSource"
username="${org.apache.jetspeed.production.database.user}"
password="${org.apache.jetspeed.production.database.password}"
driverClassName="${org.apache.jetspeed.production.database.driver}"
url="${org.apache.jetspeed.production.database.url}"
- maxActive="100" maxIdle="30" maxWait="10000"/>
+ maxActive="100" maxIdle="30" maxWait="10000" />
- <Valve className="org.apache.catalina.authenticator.FormAuthenticator"
characterEncoding="UTF-8"/>
+ <Valve className="org.apache.catalina.authenticator.FormAuthenticator"
characterEncoding="UTF-8" changeSessionIdOnAuthentication="true" />
</Context>
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
