[users@httpd] apche http lost session

[ya...@harel-ins.co.il]

Hi

 

I have apache http 2.2 server that forward request to jboss web server (version 4.2)

I configure my http server to forward request to my login page to secure https

When the user login I save the user information in my session

After the user login I forward the request to non-secure page (http)

But when I try to get the user information from the session  I found that my session was lost

How can I solved this?

Thanks Yaniv

 

 

 

RE: [users@httpd] apche http lost session

[ya...@harel-ins.co.il]

Yes I am using the same domain
I don’t know about the "secure" flag
Is this apache configuration or java configuration?
Can u tell me where do I set this flag?


___________________________
יניב אושרי
צוות מיתב – תוכניתן JAVA
שלוחה:7435 


-----Original Message-----
From: Issac Goldstand [mailto:margol@beamartyr.net] 
Sent: Sunday, October 25, 2009 4:09 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] apche http lost session

Are you sure that you're using the same domain for the http and https
requests?

Are you sure that you're not setting the "secure" flag on the session
cookie?

  Issac

yanivo@harel-ins.co.il wrote:
>
> Hi
>
>  
>
> I have apache http 2.2 server that forward request to jboss web server
> (version 4.2)
>
> I configure my http server to forward request to my login page to
> secure https
>
> When the user login I save the user information in my session
>
> After the user login I forward the request to non-secure page (http)
>
> But when I try to get the user information from the session  I found
> that my session was lost
>
> How can I solved this?
>
> Thanks Yaniv
>
>  
>
> *picture (2)*
>
>  
>
> ------------------------------------------------------------------------
> This message was enriched by Impactia Technologies Ltd.   
> www.impactia.com <http://www.impactia.com>
> Please do not enrich
> <www.kuku.co.il/exclude.asp?email=users@httpd.apache.org&domain=harel-ins.co.il&id=777>
> emails sent to me.


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] apche http lost session

[Issac Goldstand <ma...@beamartyr.net>]

Are you sure that you're using the same domain for the http and https
requests?

Are you sure that you're not setting the "secure" flag on the session
cookie?

  Issac

yanivo@harel-ins.co.il wrote:
>
> Hi
>
>  
>
> I have apache http 2.2 server that forward request to jboss web server
> (version 4.2)
>
> I configure my http server to forward request to my login page to
> secure https
>
> When the user login I save the user information in my session
>
> After the user login I forward the request to non-secure page (http)
>
> But when I try to get the user information from the session  I found
> that my session was lost
>
> How can I solved this?
>
> Thanks Yaniv
>
>  
>
> *picture (2)*
>
>  
>
> ------------------------------------------------------------------------
> This message was enriched by Impactia Technologies Ltd.   
> www.impactia.com <http://www.impactia.com>
> Please do not enrich
> <www.kuku.co.il/exclude.asp?email=users@httpd.apache.org&domain=harel-ins.co.il&id=777>
> emails sent to me.


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org