Return-Path: <ethan@vonderweid.com>
Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm
Delivered-To: mailing list tomcat-user@jakarta.apache.org
Received: (qmail 99321 invoked from network); 6 Feb 2001 19:04:00 -0000
Received: from adsl-209-233-24-184.dsl.snfc21.pacbell.net (HELO
 vonderweid.com) (root@209.233.24.184)
  by h31.sny.collab.net with SMTP; 6 Feb 2001 19:04:00 -0000
Received: from vonderweid.com (sfgw.epicentric.com [63.165.12.1])
	by vonderweid.com (8.9.3/8.8.7) with ESMTP id LAA17916
	for <tomcat-user@jakarta.apache.org>; Tue, 6 Feb 2001 11:00:13 -0800
Message-ID: <3A804AA1.6518C424@vonderweid.com>
Date: Tue, 06 Feb 2001 11:04:01 -0800
From: Ethan VonderWeid <ethan@vonderweid.com>
X-Mailer: Mozilla 4.72 [en] (WinNT; U)
X-Accept-Language: en
MIME-Version: 1.0
To: tomcat-user@jakarta.apache.org
Subject: Tomcat 3.2.1 re-creating session
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Spam-Rating: h31.sny.collab.net 1.6.2 0/1000/N


I've got a fairly large JSP/Java application that runs on almost every
app server you can think of.  however, on Tomcat running on NT 4 I'm
running into an odd problem.  for what it's worth, this problem doesn't
appear when running Tomcat on Solaris.

to log into the app, the user goes to http://mydomain.com/foo which
brings them to the index.jsp page.  one of two things will happen. 
either a login cookie is found indicating that this user has already
logged in and the contents of index.jsp will be displayed, or no login
cookie is found and the user is redirected to a signin page, signin.jsp.

when the user signs in via signin.jsp, a new login cookie is set for
them and some user info gets put in the session, then they get
redirected back to index.jsp.  at that point they are good to go for the
length of their stay.  they can navigate to other pages within the
system with no problems.  however, if they try and go back to
http://mydomain.com/foo (without adding /index.jsp) they appear to get
logged out.  going to http://mydomain.com/foo/ has the same results. 
doing a little debugging in index.jsp, Tomcat seems to be handing back a
new session object.  it's also ignoring the login cookie that was set
when the user signed in.  if the user were to go to
http://mydomain.com/foo/index.jsp everything works fine, of course.

this only happens when I'm using IE (5.5) as my browser.  if I use
netscape, everything works fine.  anyone have any ideas as to what's
going on here?

e

----- BEGIN GEEK CODE BLOCK -----
Version: 3.12
GCS d- s: a- C+++ UL++/US++ P++ L++ E- W++(+++) N+ o? k? w(--) O? M(+)
V? PS(++) PE+(-) Y+ PGP t(+) 5(+) X R(++) tv-- b+(++) DI++ D+ G e++ h---
r++ y?
------ END GEEK CODE BLOCK ------