You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by bu...@apache.org on 2010/07/15 23:30:42 UTC
DO NOT REPLY [Bug 49598] New: Session update fails and adds second
cookie header without header name
https://issues.apache.org/bugzilla/show_bug.cgi?id=49598
Summary: Session update fails and adds second cookie header
without header name
Product: Tomcat 7
Version: trunk
Platform: All
OS/Version: All
Status: NEW
Severity: regression
Priority: P2
Component: Catalina
AssignedTo: dev@tomcat.apache.org
ReportedBy: markt@apache.org
The following code in a Servlet or JSP will cause invalid session cookies to be
sent to the client:
HttpSession session = req.getSession(true);
session.invalidate();
req.getSession(true);
Essentially the client will still see the old session cookie and then try and
use the now invalidated session, breaking most applications that do this.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org
DO NOT REPLY [Bug 49598] Session update fails and adds second cookie
header without header name
Posted by bu...@apache.org.
https://issues.apache.org/bugzilla/show_bug.cgi?id=49598
Mark Thomas <ma...@apache.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |jessebrand@gmail.com
--- Comment #3 from Mark Thomas <ma...@apache.org> 2010-07-23 07:19:57 EDT ---
*** Bug 49641 has been marked as a duplicate of this bug. ***
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org
DO NOT REPLY [Bug 49598] Session update fails and adds second cookie
header without header name
Posted by bu...@apache.org.
https://issues.apache.org/bugzilla/show_bug.cgi?id=49598
tetsujin@interfree.it changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |REOPENED
Version|6.0.28 |6.0.29
Resolution|FIXED |
--- Comment #4 from tetsujin@interfree.it 2010-11-25 10:23:09 EST ---
The same issue happens even on Tomcat 6.0.29 on both Linux CentOS and Windows
XP with exactly the same behaviour. We discovered that migrating from Tomcat
6.0.18
Does there exists a temporary fix ?
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org
DO NOT REPLY [Bug 49598] Session update fails and adds second cookie
header without header name
Posted by bu...@apache.org.
https://issues.apache.org/bugzilla/show_bug.cgi?id=49598
Mark Thomas <ma...@apache.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Component|Catalina |Catalina
Version|trunk |6.0.28
Resolution| |FIXED
Product|Tomcat 7 |Tomcat 6
Target Milestone|--- |default
--- Comment #2 from Mark Thomas <ma...@apache.org> 2010-07-16 06:27:10 EDT ---
Fixed in 6.0.x and will be included in 6.0.29 onwards.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org
DO NOT REPLY [Bug 49598] Session update fails and adds second cookie
header without header name
Posted by bu...@apache.org.
https://issues.apache.org/bugzilla/show_bug.cgi?id=49598
Mark Thomas <ma...@apache.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|REOPENED |RESOLVED
Resolution| |FIXED
--- Comment #5 from Mark Thomas <ma...@apache.org> 2010-11-25 10:42:46 EST ---
This issue has been fixed in 6.0.29.
If you are experiencing issues, Bugzilla is not a support forum. Please use the
users mailing list.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org
DO NOT REPLY [Bug 49598] Session update fails and adds second cookie
header without header name
Posted by bu...@apache.org.
https://issues.apache.org/bugzilla/show_bug.cgi?id=49598
--- Comment #1 from Mark Thomas <ma...@apache.org> 2010-07-15 17:56:40 EDT ---
Fixed in 7.0.x and will be in 7.0.1 onwards.
Proposed for 6.0.x
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org