Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 64521 invoked from network); 19 Feb 2010 12:26:56 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 19 Feb 2010 12:26:56 -0000 Received: (qmail 77125 invoked by uid 500); 19 Feb 2010 12:26:52 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 77050 invoked by uid 500); 19 Feb 2010 12:26:51 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 77039 invoked by uid 99); 19 Feb 2010 12:26:51 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 19 Feb 2010 12:26:51 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of aw@ice-sa.com designates 212.85.38.228 as permitted sender) Received: from [212.85.38.228] (HELO tor.combios.es) (212.85.38.228) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 19 Feb 2010 12:26:43 +0000 Received: from localhost (localhost [127.0.0.1]) by tor.combios.es (Postfix) with ESMTP id 2407F2260E4 for ; Fri, 19 Feb 2010 13:26:22 +0100 (CET) Received: from tor.combios.es ([127.0.0.1]) by localhost (tor.combios.es [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Duh8EEMdV1wY for ; Fri, 19 Feb 2010 13:26:22 +0100 (CET) Received: from [192.168.245.129] (p549EA855.dip0.t-ipconnect.de [84.158.168.85]) by tor.combios.es (Postfix) with ESMTPA id A8F2E2260E3 for ; Fri, 19 Feb 2010 13:26:21 +0100 (CET) Message-ID: <4B7E834B.2080901@ice-sa.com> Date: Fri, 19 Feb 2010 13:25:47 +0100 From: =?ISO-8859-1?Q?Andr=E9_Warnier?= Reply-To: Tomcat Users List User-Agent: Thunderbird 2.0.0.23 (Windows/20090812) MIME-Version: 1.0 To: Tomcat Users List Subject: Re: 6.0.24 SSL Session always New References: <27652568.post@talk.nabble.com> In-Reply-To: <27652568.post@talk.nabble.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit iainmac wrote: > Hi, > > I have just moved from 5.0.18 to 6.0.24 using JSSE for SSL. > > I have a web application that checks for a current session, and if there > isn't one it sends the user to a login screen. This is working fine from > Explorer as it did before in the previous version of Tomcat, but it keeps > saying the session is new in Firefox, Safari and Chrome. > > In the jsp, this keeps taking me back to the login screen... > > if (session.getAttribute("userName")==null){ > response.sendRedirect("login.jsp"); > return; > } > > Why would Explorer work and the others not? > Hi. I am being a bit adventurous here considering my knowledge of Java and JSP, but it seems to me that the test above does not really check whether there is or not a session; it checks whether the attribute "userName" of the session is defined. That may be a different thing. Other than that, assuming the above is correct, and assuming that the server side is always the same, and only the browser changes,.. - settings different in the different browsers ? (like IE allows cookies, the other ones not ?) - you are within a Windows network, and some Windows authentication mechanism plays a role when you use IE, and not when you use the other browsers ? You should probably provide more information about your setup, to allow people here to make more informed guesses. Like - under what OS is Tomcat running ? - what kind of authentication does your webapp use ? (WEB-INF/web.xml) - are you accessing Tomcat directly, or through another webserver and a connector ? - the settings of your SSL connector ? (passwords etc. removed) - what do the logs say ? --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org