On 11 April 2018 at 23:32, Mark Thomas wrote:
> Hi all,
>
> Thanks to the magic of GitHub pages, the Tomcat training material that
> was used for the recent training session is now available on-line here:
>
> https://apache.github.io/tomcat-training/
>
> The source code is here:
It was not the ;jsessionidxx, but changes to Spring StrictHttpFirewall, the
default config now does not allow some characters in the url :
- Rejects URLs that are not normalized to avoid bypassing security
constraints...
- Rejects URLs that contain characters that are not printable ASCII
Hi Greg
-Original Message-
From: Greg Huber [mailto:gregh3...@gmail.com]
Sent: Thursday, April 26, 2018 4:53 AM
To: Tomcat Users List
Subject: Tomcat 9 ;jsessionid
> Hello,
>
> One thing I have noticed with Tomcat 9.0.x I get alot
> ;jsessionid=xxx appended to