tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "G. Wade Johnson" <>
Subject Session Timeouts and SSO
Date Fri, 05 Sep 2003 19:23:16 GMT
Thanks again for all of the responses so far on my Timeout issue.
I still have a problem, but it is not what I thought it was.

Apparently, there is a <session-timeout/> set to 30 minutes in the
$CATALINA_HOME/conf/web.xml that I have. I don't recall changing this
(but I won't rule out the possibility). I modified that, and found
that I could get the session to expire at the time I specify.

This time, I looked at the cookies that were sent back just before I
get the login screen and found that Tomcat is sending a request to
delete the JSESSIONIDSSO cookie used by the SingleSignon valve.
Apparently, it is this valve and not Tomcat proper that is signing me
out after the timeout period.

Is this expected behavior?

Is there any way for me to work around this behavior?

Thanks again,
G. Wade

View raw message