Dear Baptiste : Many Thanks! Your suggestion is very helpful. I had success on this issue!
Samuel Liang Advanced Semiconductor Engineering Group Tel : 886-7-3636641 # 84508 .Fax : 886-7-3636663 Email Address : [email protected] 2014/08/18 ----- ASE Confidentiality Notice ----- The preceding message (including any attachments) contains proprietary information that may be confidential, privileged, or constitute non-public information. It is to be read and used solely by the intended recipient(s) or conveyed only to the designated recipient(s). If you are not an intended recipient of this message, please notify the author or sender immediately either by replying to this message or by telephone at 886-7-3617131 and delete this message (including any attachments hereto) immediately from your system. You should not read ,retain, disseminate, distribute, copy or use this message in whole or in part for any purpose, not disclose all or any part of its content to any other person. ----- ASE Confidentiality Notice ----- Baptiste <[email protected]> 2014/08/15 下午 06:39 To [email protected] cc Jarno Huuskonen <[email protected]>, HAProxy <[email protected]> Subject Re: Ask cas behind haproxy problem : CASTGC cookie lost > Set-Cookie: > CASTGC=TGT-144-6Q2bBccjqXHGdCk6W6gnuEZzed5Gto7fSDSLPgXYpDMbGP2xDb-khtrdsso01.kh.asegroup.com; > Domain=khtrdsso01.kh.asegroup.com; Path=/cas/; Secure^M > Set-Cookie: JSESSIONID=EEE2BAA00BB0C4803D90DA8DFBFAE8A7; > Domain=khtrdsso01.kh.asegroup.com; Path=/cas/; Secure^M > <html><body onload='document.forms[0].submit()'><form > action='http://tdatwo.kh.asegroup.com/TdaJSFWeb/index.ase' > method='get'><input type='hidden' name='ticket' > value='ST-144-IhwNPrzMmzP3FClSNqiM-khtrdsso01.kh.asegroup.com'></form></body></html> > Jarno Huuskonen > Jarno, The issue is easy to target. Look at the Set-Cookie generated by the server and the URLs you're browsing or you're redirecting to. The cookie generated by the server is valid for a domain which is not the same used by your application. That's why your browser don't send the cookie to your application. Fix this issue and you're done. Both HAProxy logs (once you modified them) and tcpdump lead to the same conclusion. You could also rewrite the Set-Cookie to update the Domain parameter. Baptiste
