tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Duan, Nick" <ND...@mcdonaldbradley.com>
Subject RE: Sharing session across http and https connections
Date Tue, 29 Nov 2005 17:24:12 GMT
You can't do this if both sites are on different machines since tomcat
user ID (defined as a cookie by default), is tied to an url.  If both
sites are on different machines, you may have to use url-rewritting for
session tracking instead of using the default cookies.

ND

-----Original Message-----
From: Chris Birch [mailto:cpbirch@mac.com] 
Sent: Tuesday, November 29, 2005 11:57 AM
To: Tomcat Users List
Subject: Sharing session across http and https connections

Hi,

I'm sure this has been solved and documented already but I can't find 
any information, if anyone can help me or point me in the right 
direction, I'd be very grateful.

I have an Apache->mod_jk->Tomcat installation.  I'm running two sites 
on Apache for the same domain but one is HTTP and the other is HTTPS.  
I'd like to be able to share a java user session across both the HTTP 
and HTTPS requests from a single user but a separate session is created 
for the secure and unsecure connection.

Does anyone know how to have a single session for a user regardless of 
whether they are connecting to the application via the secure or 
unsecure route?

Many Thanks,
Chris.


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message