tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Joel Roth-Nater <>
Subject [Fwd: using SSL_SESSION_ID for session tracking, anyone done it?]
Date Mon, 10 Dec 2001 19:40:59 GMT
My idea is to let Apache handle SSL traffic, but pass the SSL_SESSION_ID 
through mod_webapp to Tomcat. Tomcat could then use it to track its 
sessions without cookies or URL-rewriting. Before I start writing the 
code myself, I wonder if anyone has tried to do it.

I've been all over the list-archives, source code and doc to no avail, 
yet the J2EE spec mandates "SSL" as one of the methods for session 
tracking. Am I missing something?

-- Joel

To unsubscribe, e-mail:   <>
For additional commands, e-mail: <>

View raw message