Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Delegated authentication: fix the DistributedJ2ESessionStore #4426

wants to merge 1 commit into
base: 6.1.x


Copy link

leleuj commented Nov 8, 2019

Currently, the DistributedJ2ESessionStore does not work when you have more than one node.

Let's say that a session is generated on a first node, when you reach the second node, retrieving the session via the Tomcat session manager does not work. A JSESSION_ID cookie value is actually retrieved, but as there is no HTTP session associated, it is discarded and a new session with a new identifier is created.

The only way to deal with that is to directly read the cookie value.

@apereocas-bot apereocas-bot added this to the 6.1.2 milestone Nov 8, 2019

This comment has been minimized.

Copy link

CLAassistant commented Nov 8, 2019

CLA assistant check
Thank you for your submission, we really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.

@mmoayyed mmoayyed changed the title Fix the DistributedJ2ESessionStore Delegated authentication: fix the DistributedJ2ESessionStore Nov 10, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
None yet
3 participants
You can’t perform that action at this time.