Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat

2008-04-22 Thread Melanie Pfefer
hi Krist, indeed enabling ssl on front-end solved the problem. thx --- On Mon, 21/4/08, Krist van Besien <[EMAIL PROTECTED]> wrote: > From: Krist van Besien <[EMAIL PROTECTED]> > Subject: Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat > To: users@htt

Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat

2008-04-21 Thread Krist van Besien
On Mon, Apr 21, 2008 at 6:26 PM, Melanie Pfefer <[EMAIL PROTECTED]> wrote: > or should I install ssl on apache? this way, the secure cookie will go to ssl > channel also. Will it solve the problem? Ofcourse you can configure your apache server to use ssl. This will probably solve your problem. Bu

Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat

2008-04-21 Thread Melanie Pfefer
or should I install ssl on apache? this way, the secure cookie will go to ssl channel also. Will it solve the problem? thx --- On Mon, 21/4/08, Krist van Besien <[EMAIL PROTECTED]> wrote: > From: Krist van Besien <[EMAIL PROTECTED]> > Subject: Re: [EMAIL PROTECTED] apache

Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat

2008-04-21 Thread Krist van Besien
On Mon, Apr 21, 2008 at 4:16 PM, Melanie Pfefer <[EMAIL PROTECTED]> wrote: > hi Krist, > > > In LiveHTTPHeaders: > > Set-Cookie: JSESSIONID=2637CA3EADF9422597DF276AE1846E55; Path=/abc; Secure > > So I guess this means that the session is "secure". and from what you have > said, the brwoser cann

Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat

2008-04-21 Thread Melanie Pfefer
ternatives? thanks in advance --- On Mon, 21/4/08, Krist van Besien <[EMAIL PROTECTED]> wrote: > From: Krist van Besien <[EMAIL PROTECTED]> > Subject: Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat > To: users@httpd.apache.org, [EMAIL PROTECTED] > Dat

Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat

2008-04-21 Thread Krist van Besien
On Mon, Apr 21, 2008 at 2:21 PM, Melanie Pfefer <[EMAIL PROTECTED]> wrote: > Before editing httpd.conf, on the tomcat side: how to set the correct > cookiedomain in the webapp? How to set this in the webapp I can't know, as I'm not a webapp specialist. But I have to deal with similar problems y

Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat

2008-04-21 Thread Melanie Pfefer
cookiedomain in the webapp? Thanks. --- On Mon, 21/4/08, Krist van Besien <[EMAIL PROTECTED]> wrote: > From: Krist van Besien <[EMAIL PROTECTED]> > Subject: Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat > To: users@httpd.apache.org, [EMAIL PROTECTE

Re: [EMAIL PROTECTED] apache does not preserve user session of tomcat

2008-04-21 Thread Krist van Besien
On Mon, Apr 21, 2008 at 8:57 AM, Melanie Pfefer <[EMAIL PROTECTED]> wrote: > hi again, > > I am using apache as a reverse proxy to a tomcat server running ssl. In > httpd.conf: > > SSLProxyEngine On > SSLProxyCACertificatePath /usr/local/apache2/conf/ssl > RewriteRule ^/(abc.*) https://backend

[EMAIL PROTECTED] apache does not preserve user session of tomcat

2008-04-20 Thread Melanie Pfefer
hi again, I am using apache as a reverse proxy to a tomcat server running ssl. In httpd.conf: SSLProxyEngine On SSLProxyCACertificatePath /usr/local/apache2/conf/ssl RewriteRule ^/(abc.*) https://backend:8443/$1 [P,L] and url proxying is working. however I noticed that the tomcat user session i