On Fri, Jun 6, 2008 at 15:11, krusek <[EMAIL PROTECTED]> wrote: > There are 3 cookies, JSESSONIDSSO, test and JSESSONID. > Not sure how you tell if its marked secure?
Some browsers can tell you this. Check your browser's documentation. But what I don't understand is why it "worked" before - I thought that session cookies were *supposed* to be dropped when going from HTTPS to HTTP. Ref: http://marc.info/?l=tomcat-user&m=112370795230194&w=2 -- Len --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]