Re: Tomcat 7 Session Persistence disable not working as expected

Sun, 09 Mar 2014 23:12:07 -0700 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Akash,

On 3/10/14, 1:03 AM, Akash Jain wrote:
> As documented in 
> https://tomcat.apache.org/tomcat-5.5-doc/config/manager.html#Disable_Session_Persistence,
>
> 
I added the following code piece to disable session persistence in
> Tomcat 7.
> 
> <Manager pathname="" />
> 
> After this change I can see that SESSIONS.ser is not getting
> created as expected, but even after restarting tomcat, the previous
> JSESSIONID is still valid. Why is tomcat not invalidating the
> previous JSESSIONID ?

What makes you think the session is still valid after a restart? Did
you bind an attribute to the session, and you're still seeing it in
there after a restart?

What file did you modify to change the <Manager> configuration?

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
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=SBC3
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Reply via email to