Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 90523 invoked from network); 29 Nov 2005 17:24:58 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 29 Nov 2005 17:24:58 -0000 Received: (qmail 27020 invoked by uid 500); 29 Nov 2005 17:24:43 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 26999 invoked by uid 500); 29 Nov 2005 17:24:43 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 26984 invoked by uid 99); 29 Nov 2005 17:24:43 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 29 Nov 2005 09:24:43 -0800 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: local policy) Received: from [12.165.216.9] (HELO mail2.mcdonaldbradley.com) (12.165.216.9) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 29 Nov 2005 09:26:13 -0800 X-MimeOLE: Produced By Microsoft Exchange V6.5.7226.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: Sharing session across http and https connections Date: Tue, 29 Nov 2005 12:24:12 -0500 Message-ID: <1C436BE656E9BE44AE9923273274309186BCA2@hqmsg02.mcdonaldbradley.local> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Sharing session across http and https connections Thread-Index: AcX1BfYnR9eTP5TYTri/AmcreEOb/AAAwrgg From: "Duan, Nick" To: "Tomcat Users List" X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N You can't do this if both sites are on different machines since tomcat user ID (defined as a cookie by default), is tied to an url. If both sites are on different machines, you may have to use url-rewritting for session tracking instead of using the default cookies. ND -----Original Message----- From: Chris Birch [mailto:cpbirch@mac.com]=20 Sent: Tuesday, November 29, 2005 11:57 AM To: Tomcat Users List Subject: Sharing session across http and https connections Hi, I'm sure this has been solved and documented already but I can't find=20 any information, if anyone can help me or point me in the right=20 direction, I'd be very grateful. I have an Apache->mod_jk->Tomcat installation. I'm running two sites=20 on Apache for the same domain but one is HTTP and the other is HTTPS. =20 I'd like to be able to share a java user session across both the HTTP=20 and HTTPS requests from a single user but a separate session is created=20 for the secure and unsecure connection. Does anyone know how to have a single session for a user regardless of=20 whether they are connecting to the application via the secure or=20 unsecure route? Many Thanks, Chris. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org