Return-Path: X-Original-To: apmail-shiro-user-archive@www.apache.org Delivered-To: apmail-shiro-user-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 81B76C805 for ; Thu, 7 Jun 2012 22:36:00 +0000 (UTC) Received: (qmail 36664 invoked by uid 500); 7 Jun 2012 22:36:00 -0000 Delivered-To: apmail-shiro-user-archive@shiro.apache.org Received: (qmail 36647 invoked by uid 500); 7 Jun 2012 22:36:00 -0000 Mailing-List: contact user-help@shiro.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@shiro.apache.org Delivered-To: mailing list user@shiro.apache.org Received: (qmail 36639 invoked by uid 99); 7 Jun 2012 22:36:00 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 07 Jun 2012 22:36:00 +0000 X-ASF-Spam-Status: No, hits=2.0 required=5.0 tests=FSL_RCVD_USER,SPF_NEUTRAL,URI_HEX X-Spam-Check-By: apache.org Received-SPF: neutral (nike.apache.org: 216.139.236.26 is neither permitted nor denied by domain of mswiernik@gmail.com) Received: from [216.139.236.26] (HELO sam.nabble.com) (216.139.236.26) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 07 Jun 2012 22:35:53 +0000 Received: from jim.nabble.com ([192.168.236.80]) by sam.nabble.com with esmtp (Exim 4.72) (envelope-from ) id 1SclIi-0006Vl-V5 for user@shiro.apache.org; Thu, 07 Jun 2012 15:35:32 -0700 Date: Thu, 7 Jun 2012 15:35:32 -0700 (PDT) From: drmike01 To: user@shiro.apache.org Message-ID: <1339108532950-7577476.post@n2.nabble.com> In-Reply-To: References: <1339103616080-7577474.post@n2.nabble.com> Subject: Re: Native session management for web sessions MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit I just did an initial login and subsequent access, and it appears to be finding that cookie. I'll have to try again in a little bit to see if, after a period of time, I get a different response. The logs had the below: 2012-06-07 15:24:21,819 [http-bio-8080-exec-3] DEBUG org.apache.shiro.session.mgt.DefaultSessionManager .create:175 - Creating new EIS record for new session instance [org.apache.shiro.session.mgt.SimpleSession,id=null] 2012-06-07 15:24:21,820 [http-bio-8080-exec-3] DEBUG org.apache.shiro.web.servlet.SimpleCookie .addCookieHeader:226 - Added HttpServletResponse Cookie [JSESSIONID=6ca59e24-d8c8-497c-bcc4-3b2d02a9d121; Path=/mhrx; HttpOnly] ... some of my own debugging 2012-06-07 15:25:29,167 [http-bio-8080-exec-5] DEBUG org.apache.shiro.web.servlet.SimpleCookie .readValue:366 - Found 'JSESSIONID' cookie value [6ca59e24-d8c8-497c-bcc4-3b2d02a9d121] I'm not sure it matters, but I do have my own Realm implementation, as well as my own LoginFilter that extends AuthenticatingFilter. I don't recall seeing anything in the superclasses that could screw this part up, though. I'll post back in a little bit with what happens with the expired attempt. -- View this message in context: http://shiro-user.582556.n2.nabble.com/Native-session-management-for-web-sessions-tp7577474p7577476.html Sent from the Shiro User mailing list archive at Nabble.com.