Re: How do I set maxage on the JSESSIONID cookie?

Fri, 29 Jun 2007 15:05:30 -0700

Eric, I found your code, so I'll try to modify it for my needs. I've never written a valve before, so wish me luck!
Chris, this is an internal application which will not be accessed by more than 7 people, so the server session timeout will be 48 hours. The idea is for the application to be accessible only to these certain people while minimizing the need for logins. 

--Jesse Barnum, President, 360Works
http://www.360works.com
(770) 234-9293


On Jun 29, 2007, at 2:50 PM, Eric Berry wrote:


You will probably have to write a valve for this. I had to write one
to set the session cookie's domain so that it's a site wide domain.

I posted the code to this mailing list a while back. If you do a
search you should be able to find it, if not let me know I'll see if I
can get a hold of it.

Eric

On 6/29/07, Christopher Schultz <[EMAIL PROTECTED]> wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

All,

Jesse Barnum wrote:

> Well, you can set the max age on a cookie to something > 0,  
which means
> that it will persist for that amount of time, even if the user's  
browser
> window is closed. I'm just trying to figure out if there is a  
way to
> tell Tomcat to set that property on the cookies that it creates  
to store

> the session ID's.


You may have to do it manually (that is, grab the Cookie object  
from the

response and force the maxage).


On the other hand, the user's session is going to time out within  
that
48 hours, so what's the point of maintaining the JSESSIONID cookie  
past

the browser-session?

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFGhUcu9CaO5/Lv0PARAjzeAJ9PAkO2n4InRn9s9KaoCTlZ6gogowCgipM2
VibFQ3g7DvtU4ajdOcsOa94=
=Jdtn
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





--
Learn from the past. Live in the present. Plan for the future.

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]















    











					Reply via email to