On Wed, Dec 17, 2014 at 3:09 PM, Darshana Gunawardana <[email protected]> wrote: > Hi folks, > > What is our stand for $subject? > > AFAIK, the new authentication framework doesn't depends on the tomcat > session, so it doesn't required to have sticky session enable in the load > balancer. (May be OpenID have a exception) > > But for management console operations, its required enable sticky sessions.. > > What are the other concerns, if we disable sticky sessions in the load > balancer?
I guess, Framework is working without sticky session as it replicates all states data... Sometime, OpenId may maintains some state in session... we could avoid it using caching as well...? Yes.. I think, sticky session is required when accessing console and admin services (can you basic auth as well) using LB. Thanks, Aseka > > Thanks, > Darshana > -- > Regards, > > Darshana Gunawardana > Software Engineer > WSO2 Inc.; http://wso2.com > E-mail: [email protected] > Mobile: +94718566859 > Lean . Enterprise . Middleware -- Thanks & Regards, Asela ATL Mobile : +94 777 625 933 +358 449 228 979 _______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
