tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From André Warnier>
Subject Re: lost session in Tomcat 7.040 and IE8
Date Fri, 14 Jun 2013 07:17:41 GMT
Carl Dreher wrote:
> I have Tomcat 7.0.26 running on Window7 Pro.  I also have Tomcat 7.0.40 
> running on a Windows 7 Home Premium.  Both have the same website.  
> (Obviously, I'm doing some testing.)
> In the website, a user logs on and the user ID is kept in the session.   
> In one of the JSP pages I have some JavaScript attached to an html button
> <input type="button" name="" value="blah blah blah" 
> onclick="window.location='/MySite/'">
> (I'm using Struts.)  Now, here is were it gets strange...
> During testing, I found that IE8 and IE9 both run fine against Tomcat 
> 7.0.26.  By that I mean, after the user logs on, the user ID is kept in 
> the session.  After navigating around the site, if the user then clicks 
> on the above button, the Struts Action class "" is able to 
> find the user ID in the session.
> The same is true of IE9 against Tomcat 7.0.40.
> But if I do the above with IE8 against the site on Tomcat 7.0.40, the 
> user ID in the session is empty.
> To summarize,
>                            |     IE8             |   IE9
> -----------------------------------------------------------
> Tomcat 7.0.26  |     ok               |     ok
> -----------------------------------------------------------
> Tomcat 7.0.40   |    fail              |      ok
> -----------------------------------------------------------
> Any ideas where to start looking?

Yes. I would recommend, first of all, that you install some add-on on the IE side, which 
can display the conversation between IE and server (HTTP headers etc.).
(I know of Fiddler2, but there might be others).
Then run your check once on each, and compare requests/responses/headers.

There have been over the years (and there still are) so many quirks/bugs/inconsistencies 
between IE versions (and patch levels within versions), that I would start there with any

issue of this nature.

I'm not saying that this /is/ the problem here, but first things first.
It would not be too surprising if for some reason at some point, IE8 stops sending back 
the session cookie, causing Tomcat to create a new session, without user-id.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message