tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Johann Uhrmann <>
Subject javax.servlet.http.HttpSession.getId() returns null
Date Tue, 02 Sep 2003 12:34:23 GMT

I am writing a single-sign-on filter that uses cookies and
a request-wrapper in order to fake a form-based login in
case the user is already authenticated in another web application.

The filter needs some internal structures to perform the single-sign-on
process, e.g. a map that associates the logon name with all
active sessions of the user.

When I try to get the id of those session objects, they sometimes
return null.

Are the ids of expired sessions set to null in Tomcat 4.1.27?
If yes, is there a way to retrieve the former session ids?

Thank You,


View raw message