tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jess Holle <je...@ptc.com>
Subject Re: Form Authentication vs. Tomcat Restart
Date Wed, 07 Dec 2011 12:50:23 GMT
Yes, I now note this in the documentation.

The question remains, however: /why /does it work this way?

On 12/7/2011 6:34 AM, Mohammad M. AbuZer wrote:
> Tomcat does that for every all Form Authentication even if you used
> `DatabaseRealm` it doesn't save logged user.
>
> On Wed, Dec 7, 2011 at 2:24 PM, Jess Holle<jessh@ptc.com>  wrote:
>
>> I should have noted that this is with Tomcat 7.0.23, but it seemed
>> unlikely to be JVM (Java 6 Update 29) or OS (Windows 7) specific.
>>
>> Of course given that I found that the documentation clearly states this
>> behavior, I suspect this is longstanding Tomcat behavior.
>>
>> My remaining question is /why/ Tomcat behaves this way.  If one quickly
>> restarts Tomcat for some reason and session data is preserved, you really
>> don't want all the users to have to login again do you?
>>
>> --
>> Jess Holle
>>
>>
>> On 12/6/2011 7:05 PM, André Warnier wrote:
>>
>>> Jess Holle wrote:
>>>
>>>> When doing a graceful shutdown of Tomcat, the sessions are persisted to
>>>> disk and then re-read on startup (at least in all reasonably recent
>>>> versions).
>>>>
>>>> Oddly, however, form-based authentication does not seem to survive a
>>>> graceful restart.  Rather one has to log in again.  Is this known?
>>>>   Intentional?  Configurable?
>>>>
>>>>   There should be a template for messages on this list :
>>> Tomcat version :
>>> Java version :
>>> platform OS&  version :
>>>
>>>
>>> ------------------------------**------------------------------**---------
>>> To unsubscribe, e-mail: users-unsubscribe@tomcat.**apache.org<users-unsubscribe@tomcat.apache.org>
>>> For additional commands, e-mail: users-help@tomcat.apache.org
>>>
>>>
>>>


Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message