You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by vicky chb <vk...@gmail.com> on 2022/12/20 13:57:15 UTC
[users@httpd] Session persist in apache
Hi,
We have Apache configured as Frontend web server for our backend java
application over ajp protocol and using mod_jk. Now, we want to maintain
the user session for some period of time,
For ex: If a user is logged in using his email & password in the morning,
he/she should stay logged in till 4hrs, no matter how many times he/she
closes the same browser and reopens it.
I came to know about mod_session module, but not sure how to configure for
the above requirement. Also, we don't want to store user credentials on
apache web server (like storing user related info in conf/passwd).
Cheers
-Vicky
RE: [users@httpd] Session persist in apache
Posted by Sierra Padilla <si...@excitedly.live>.
Hi,
Just checking, are you interested acquiring the list of attendees? Please respond my email. I'm waiting for your response.
Thank you.
-----Original Message-----
From: Eric Covener <co...@gmail.com>
Sent: Tuesday, December 20, 2022 8:42 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Session persist in apache
On Tue, Dec 20, 2022 at 10:08 AM vicky chb <vk...@gmail.com> wrote:
>
> Is there anyway we can store session data at apache level, also is it going to store the user credentials at apache level?
Yes, you can store and retrieve session data in Apache. But your backend application can't read or write to it, so it doesn't serve any purpose.
Similar for OIDC. The user already has a cookie. I don't think you can extend the life of their authentication by doing anything in the proxy.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Session persist in apache
Posted by Eric Covener <co...@gmail.com>.
On Tue, Dec 20, 2022 at 10:08 AM vicky chb <vk...@gmail.com> wrote:
>
> Is there anyway we can store session data at apache level, also is it going to store the user credentials at apache level?
Yes, you can store and retrieve session data in Apache. But your
backend application can't read or write to it, so it doesn't serve any
purpose.
Similar for OIDC. The user already has a cookie. I don't think you
can extend the life of their authentication by doing anything in the
proxy.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] Session persist in apache
Posted by Sierra Padilla <si...@excitedly.live>.
Hi,
Just checking, are you interested acquiring the list of attendees? Please respond my email. I'm waiting for your response.
Thank you.
From: vicky chb <vk...@gmail.com>
Sent: Tuesday, December 20, 2022 8:38 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Session persist in apache
Is there anyway we can store session data at apache level, also is it going to store the user credentials at apache level?
On Tue, 20 Dec 2022, 20:12 Eric Covener, <co...@gmail.com>> wrote:
On Tue, Dec 20, 2022 at 9:38 AM vicky chb <vk...@gmail.com>> wrote:
>
> Login is happening at the backend Application which is configured with Keycloak. The architecture looks like below
>
> Backend App <-> Apache <---openidconnect---> keycloak
>
> So, whenever User visits the website, the request goes to Apache web server which serves the Backend Application Login page.
I don't think adding session management in Apache, where no session
data is stored, will change any behavior here.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org<ma...@httpd.apache.org>
For additional commands, e-mail: users-help@httpd.apache.org<ma...@httpd.apache.org>
Re: [users@httpd] Session persist in apache
Posted by vicky chb <vk...@gmail.com>.
Is there anyway we can store session data at apache level, also is it going
to store the user credentials at apache level?
On Tue, 20 Dec 2022, 20:12 Eric Covener, <co...@gmail.com> wrote:
> On Tue, Dec 20, 2022 at 9:38 AM vicky chb <vk...@gmail.com> wrote:
> >
> > Login is happening at the backend Application which is configured with
> Keycloak. The architecture looks like below
> >
> > Backend App <-> Apache <---openidconnect---> keycloak
> >
> > So, whenever User visits the website, the request goes to Apache web
> server which serves the Backend Application Login page.
>
> I don't think adding session management in Apache, where no session
> data is stored, will change any behavior here.
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
Re: [users@httpd] Session persist in apache
Posted by Eric Covener <co...@gmail.com>.
On Tue, Dec 20, 2022 at 9:38 AM vicky chb <vk...@gmail.com> wrote:
>
> Login is happening at the backend Application which is configured with Keycloak. The architecture looks like below
>
> Backend App <-> Apache <---openidconnect---> keycloak
>
> So, whenever User visits the website, the request goes to Apache web server which serves the Backend Application Login page.
I don't think adding session management in Apache, where no session
data is stored, will change any behavior here.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Session persist in apache
Posted by vicky chb <vk...@gmail.com>.
Login is happening at the backend Application which is configured with
Keycloak. The architecture looks like below
Backend App <-> Apache <---openidconnect---> keycloak
So, whenever User visits the website, the request goes to Apache web server
which serves the Backend Application Login page.
On Tue, 20 Dec 2022, 19:32 Eric Covener, <co...@gmail.com> wrote:
> On Tue, Dec 20, 2022 at 8:57 AM vicky chb <vk...@gmail.com> wrote:
> >
> > Hi,
> >
> > We have Apache configured as Frontend web server for our backend java
> application over ajp protocol and using mod_jk. Now, we want to maintain
> the user session for some period of time,
> >
> > For ex: If a user is logged in using his email & password in the
> morning, he/she should stay logged in till 4hrs, no matter how many times
> he/she closes the same browser and reopens it.
> >
> > I came to know about mod_session module, but not sure how to configure
> for the above requirement. Also, we don't want to store user credentials on
> apache web server (like storing user related info in conf/passwd).
>
> Where do users login today, the proxy or the backend? I don't think it
> makes much sense to add sessions to the proxy server.
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
Re: [users@httpd] Session persist in apache
Posted by Eric Covener <co...@gmail.com>.
On Tue, Dec 20, 2022 at 8:57 AM vicky chb <vk...@gmail.com> wrote:
>
> Hi,
>
> We have Apache configured as Frontend web server for our backend java application over ajp protocol and using mod_jk. Now, we want to maintain the user session for some period of time,
>
> For ex: If a user is logged in using his email & password in the morning, he/she should stay logged in till 4hrs, no matter how many times he/she closes the same browser and reopens it.
>
> I came to know about mod_session module, but not sure how to configure for the above requirement. Also, we don't want to store user credentials on apache web server (like storing user related info in conf/passwd).
Where do users login today, the proxy or the backend? I don't think it
makes much sense to add sessions to the proxy server.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org