----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files. Don't make us guess your problem!!!
----------------------------------------------------------------
Hi James,
I have the same setup and only just got it working!
The way I *think* sessions work is that they are common to a servlet zone;
although you have set up the same directory for your servlets, you probably
haven't told each virtual host that they are shared between both of them.
Have you set the servlet zones for the two virtual hosts (https and your
http one) to be common? You need "ApJServMountCopy on" and "ApJServMount
/common/servlets /share" in the shared jserv directives part of httpd.conf
As to if this is actually a good way of creating a shared session between
http & https, I'd love to hear some opinions - but it works for me;)
Terry
[EMAIL PROTECTED] Christchurch, New Zealand
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Lynn, James
Sent: Thursday, 21 October 1999 05:38
To: '[EMAIL PROTECTED]'
Subject: session tracking with http & https
----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files. Don't make us guess your problem!!!
----------------------------------------------------------------
I am using a linux server running apache & jserv, and have a servlet that
needs to track a users session
This is being done successfully by using cookies.
Hovewer at one point the user needs to post data from a page using https.
ie:
The user goes through a series of http servlet generated pages.
The user posts some data from the last of these pages to a servlet via
https.
Both http and https point to the same servlet directory, and when the https
is tested on its own
it completes the required operation successfully.
The problem is that :
a) the https call creates a new cookie - ie effectively a new session
b) enumerating through the ids in the context of that new session
(session.getSessionContext().getIds())
shows that it does not contain the session id from the original batch of
http servlet calls.
Is there some way of getting the original http session object, after an
https call (given the initial session id is known) ?
If not is there any way to configure jserv such that http and https point to
the same runtime environment,
such that all sessions are accessible ?
regards,
James Lynn
> Email: [EMAIL PROTECTED]
>
>
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html>
Problems?: [EMAIL PROTECTED]
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html>
Problems?: [EMAIL PROTECTED]
