> From: Caldarale, Charles R [mailto:[email protected]]
> Subject: RE: How to set SSL session timeout in Tomcat 5.5.16
>
> No idea - I'm not a committer. It will get more attention if you file
> a Bugzilla entry for it:
> http://issues.apache.org/bugzilla/enter_bug.cgi?product=Tomcat%206
In Tomcat 6.0.26, the relevant code is at lines 434 - 446 of
org/apache/tomcat/util/net/jsse/JSSESocketFactory.java, and should be changed
to this:
int sessionTimeout;
if (attributes.get("sessionTimeout") != null) {
sessionTimeout = Integer.parseInt(
(String)attributes.get("sessionTimeout"));
} else {
sessionTimeout = defaultSessionTimeout;
}
SSLSessionContext sessionContext =
context.getServerSessionContext();
if (sessionContext != null) {
sessionContext.setSessionCacheSize(sessionCacheSize);
sessionContext.setSessionTimeout(sessionTimeout);
}
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you received
this in error, please contact the sender and delete the e-mail and its
attachments from all computers.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
