Markus, >> If the session is mandatory, I recommend changing: >> >> request.getSession(false) >> to >> request.getSession(true) > > Thanks for your quick answer. The problem I want to solve is only to create > a session if it is really needed, so #redirectToURLWithSID is a little bit > more complicated that this.
What is your definition of "is really needed"? I would say that NOT having a session is a good indication that you SHOULD create one. Am I missing the point? -chris
signature.asc
Description: OpenPGP digital signature
