You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@openwebbeans.apache.org by "Mark Struberg (JIRA)" <ji...@apache.org> on 2018/07/17 22:01:00 UTC

[jira] [Commented] (MEECROWAVE-114) make the tomcat session defaults configurable via meecrowave.properties and CLI

    [ https://issues.apache.org/jira/browse/MEECROWAVE-114?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16547151#comment-16547151 ] 

Mark Struberg commented on MEECROWAVE-114:
------------------------------------------

The respective config in meecrowave.properties is

{noformat}
web-session-timeout=20
web-session-cookie-config.secure=true
{noformat}

> make the tomcat session defaults configurable via meecrowave.properties and CLI
> -------------------------------------------------------------------------------
>
>                 Key: MEECROWAVE-114
>                 URL: https://issues.apache.org/jira/browse/MEECROWAVE-114
>             Project: Meecrowave
>          Issue Type: Improvement
>    Affects Versions: 1.2.1
>            Reporter: Mark Struberg
>            Assignee: Romain Manni-Bucau
>            Priority: Major
>             Fix For: 1.2.2
>
>
> Currently there seems to be no way to tweak the defaults for the tomcat session. Like the default session timeout, and secure. One has to configure this in web.xml or web-fragment.xml:
> {code}
>     <session-config>
>         <session-timeout>20</session-timeout>
>         <cookie-config>
>             <secure>true</secure>
>         </cookie-config>
>     </session-config>
> {code}
> But this makes it impossible to tweak those values in production.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)