Re: Session share problem.

2001-09-06 Thread Jishan Li\(CN\) 

My problem is that if the first request to the webapp is https://... , session share 
is not proper. If the first request is http://.. everything goes well!
What is the problem?

- Original Message - 
From: Al-Akhras, Khaled [EMAIL PROTECTED]
To: Orion-Interest [EMAIL PROTECTED]
Sent: Friday, September 07, 2001 5:12 AM
Subject: Re: Session share problem.


 In order to share a web-app between a HTTP and HTTPS site at the same
 context path, do the following.  I just tried this on my machine and it
 works fine.
 I am using Orion1.5.2 on Windows2000.
 
 config/server.xml
 -
 ?xml version=1.0?
 !DOCTYPE application-server PUBLIC Orion Application Server Config
 http://www.orionserver.com/dtds/application-server.dtd;
 application-server application-directory=../applications
 deployment-directory=../application-deployments
 ...
 web-site path=./default-web-site.xml/
 web-site path=./secure-web-site.xml/
 ...
 /application-server
 
 config/default-web-site.xml
 ---
 ?xml version=1.0?
 !DOCTYPE web-site PUBLIC Orion Web-site
 http://www.orionserver.com/dtds/web-site.dtd;
 web-site port=80 secure=false display-name=Default Orion WebSite
 default-web-app application=default name=defaultWebApp
 shared=true/
 ...
 /web-site
 
 config/secure-web-site.xml
 ---
 ?xml version=1.0?
 !DOCTYPE web-site PUBLIC Orion Web-site
 http://www.orionserver.com/dtds/web-site.dtd;
 web-site port=443 secure=true display-name=Secure Orion WebSite
 ssl-config keystore=../keys/server.keystore
 keystore-password=myPassword / 
 default-web-app application=default name=defaultWebApp
 shared=true /
 ...
 /web-site
 
 
 and delete the file
 D:\orion\application-deployments\default\defaultWebApp\persistence\state.ser
 before restarting orion.
 
 Good Luck.
 
 
 
ÿÿü:¢æ†Šÿüg­Ê‹«~·žÿ¡¢Ü¢fv·¬±«a¶ÚÿÿùšŠ_òj(ýÊ

Re: Re[2]: Session share problem.

2001-09-06 Thread Jishan Li\(CN\) 

Dear Rafael:
 
Thanks a lot.

I've solved the session share problem. I found the clue in your old message:
http://www.mail-archive.com/orion-interest@orionserver.com/msg15659.html

Sometimes I can't post message to the mailing list, so I email you, and thank you.
 
I think it is someting different between the two ways to load the web application. If 
the first request is via https, it load as a secure instance first, otherwise, as a 
non-secure instance first.  What I need to do is to make sure it startup and load the 
app as a non-secure instance first. So I use the load-on-startup attribute.

web-app application=mywebapp name=myweb root=/  shared=true 
load-on-startup=true / for non secure web-site.xml
web-app application=mywebapp name=myweb root=/  shared=true 
load-on-startup=false / for secure web-site.xml


Thanks again!


Jishan

- Original Message - 
From: Rafael Alvarez [EMAIL PROTECTED]
To: Orion-Interest [EMAIL PROTECTED]
Sent: Thursday, September 06, 2001 10:20 PM
Subject: Re[2]: Session share problem.


 Hello Jishan,
 There is an option (shared=true as stated in other posting) to share
 session between different instances of the SAME application. The
 keyword is SAME. If you use different applications for each of your
 normal site and your secure site then that solution won't work.
 
 What you can do in that case is to send the sessionId() of the
 nonsecure site to the secure site, and viceversa. For example:
 To enter the secure site, use a link like :
 secure.jsp?nonsecureId=Nonsecure Id
 
 To reenter the non-secure site:
 nonsecure.jsp;jsessionId=Nonsecure Id?secureId=Secure Id
 
 To reenter the secure site:
 secure.jsp;jsessionId=Secure Id?nonsecureId=Nonsecure Id
 
 
 Wednesday, September 05, 2001, 9:34:33 PM, you wrote:
 
 GM i think there's a share=true attribute that you have to put in the 
web-site.xml file ??? check out the doco in www.orionserver.com
 
 GM   - Original Message - 
 GM   From:  Li
 GM   To: Orion-Interest 
 GM   Sent: Wednesday, September 05, 2001 7:42 PM
 GM   Subject: Session share problem.
 
 
 GM   Hi,
 GM  I have session share problem between ssl site and non-ssl site. My ssl site 
name is secure.mysite.com and non-ssl site name is www.mysite.com. when I start my 
server, and visit
 GM www.mysite.com firstly, everything goes well. But when I visit secure.mysite.com 
firstly after I starting my orion server, and then back to www.mysite.com  every 
request on www.mysite.com create
 GM a new session.  So my user login, shopping cart won't work!!!
 GM  Is there any one can help me?
 GM   Thanks!
 
 GM   Jishan Li.
 
 
 
 -- 
 Best regards,
  Rafaelmailto:[EMAIL PROTECTED]
 
 
 
 
ÿÿü:¢æ†Šÿüg­Ê‹«~·žÿ¡¢Ü¢fv·¬±«a¶ÚÿÿùšŠ_òj(ýÊ