Hmm! That's true, the jsp page a sendRedirect then does the invalidate, but sometimes it does get a session. Why wouldn't the jsp page be checked by the filter before it ever started executing? Could it be a race condition?
\On Monday 23 July 2007 21:02, Filip Hanik - Dev Lists wrote: > aladdin wrote: > > After using Tomcat for over a year, one thing I still can't get straight > > is how directories are resolved. I would love it if someone could point > > me to a reference that ties together the context in server.xml, mod_jk > > mounts, and web.xml mappings, particularly with regard to an Apache front > > end. > > > > I would love this reference in general, because I have lots of questions > > in this regard, but immediately I am particularly interested in the way > > Tomcat stores and resolves its session cookies. Why would a filter I > > have written will give a correct session with the uri > > /app-name/members/trbmsg.jsp, but a null session with the uri > > /app-name/members/logout.jsp? > > cause your logout.jsp probably does a session.invalidate() :) > > > TIA, > > anw > > > > --------------------------------------------------------------------- > > To start a new topic, e-mail: users@tomcat.apache.org > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > --------------------------------------------------------------------- > To start a new topic, e-mail: users@tomcat.apache.org > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]