You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@turbine.apache.org by Ben Peter <bp...@zentropypartners.com> on 2002/03/28 05:04:27 UTC
Using turbine with session-cookies disabled
All,
is anyone using turbine-2.2-b1 with URL-based session id propagation? I have
set cookies="false" in catalina-4.0.4's server.xml, which results in a
"Horrible Exception: java.lang.Exception: Infinite redirect detected...".
This issue seems so be rather old, I have found this
http://www.mail-archive.com/turbine-user@jakarta.apache.org/msg05877.html
thread from Jan this year, which describes exactly this problem.
Am I missing something, or will I have to patch and compile turbine myself as
described in this
http://www.mail-archive.com/turbine-user@jakarta.apache.org/msg05914.html
reply to above posting? (I would rather stick with the ease of the TDK than
digging into compiling myself - or can anyone confirm that has become more
straightforward with maven?)
Cheers,
Ben
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Using turbine with session-cookies disabled
Posted by Rodney Schneider <rl...@arcalink.com>.
On Fri, 29 Mar 2002 05:21, you wrote:
> If you think something needs to be done to the source, please send an
> enumeration of the steps and the reasoning behind them to the
> turbine-dev@jakara.apache.org list.
>
> Thanks, Dan
OK, I will send an email to turbine-dev now, but I am not a subscriber (the
traffic is too high for me), so can you email the turbine-user list with any
conclusions you come to?
Thanks,
-- Rodney
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Using turbine with session-cookies disabled
Posted by Eric Dobbs <er...@dobbse.net>.
On Tuesday, April 2, 2002, at 06:14 PM, Rodney Schneider wrote:
> Hey! I just went to create a patch for this problem against the
> lastest CVS
> version of Turbine 2.2 and realised that Eric Dobbs has already fixed
> the
> problem. The patches were committed to Turbine.java and friends on
> Friday.
>
> Thanks Eric!
You're welcome. And I'm sorry that I neglected to
follow-up on this thread to let you know about it.
-Eric
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Using turbine with session-cookies disabled
Posted by Rodney Schneider <rl...@arcalink.com>.
On Wed, 3 Apr 2002 10:59, Rodney Schneider wrote:
> On Fri, 29 Mar 2002 05:21, you wrote:
> > If you think something needs to be done to the source, please send an
> > enumeration of the steps and the reasoning behind them to the
> > turbine-dev@jakara.apache.org list.
> >
> > Thanks, Dan
>
> OK, I will send an email to turbine-dev now, but I am not a subscriber (the
> traffic is too high for me), so can you email the turbine-user list with
> any conclusions you come to?
Hey! I just went to create a patch for this problem against the lastest CVS
version of Turbine 2.2 and realised that Eric Dobbs has already fixed the
problem. The patches were committed to Turbine.java and friends on Friday.
Thanks Eric!
-- Rodney
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: removing redirect code from turbine (was Re: Using turbine with session-cookies disabled)
Posted by Eric Dobbs <er...@dobbse.net>.
On Thursday, March 28, 2002, at 11:45 PM, Daniel Rall wrote:
> Eric, would you apply the changes to 2.2?
done. I should draw extra attention to the changes to
SessionValidator and company. It looks like that code
was only used by Turbine.java. But I can back out
those changes if necessary.
-Eric
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: removing redirect code from turbine (was Re: Using turbine with session-cookies disabled)
Posted by Daniel Rall <dl...@finemaltcoding.com>.
Eric Dobbs <er...@dobbse.net> writes:
> If deprecation policy does not apply here, then manually apply
> Peter's changes to the 2.2 code and be done with it.
Eric, would you apply the changes to 2.2?
- Dan
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: removing redirect code from turbine (was Re: Using turbine with session-cookies disabled)
Posted by Daniel Rall <dl...@finemaltcoding.com>.
John McNally <jm...@collab.net> writes:
> Remove it. The problem it was meant to solve has been gone for quite a
> while. I think it only existed on jserv1.0. We are not supporting use
> of jserv.
+1 on removing it -- Turbine officially supports servlet api 2.2 and
+higher. JServ was 2.0.
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: removing redirect code from turbine (was Re: Using turbine with
session-cookies disabled)
Posted by John McNally <jm...@collab.net>.
Remove it. The problem it was meant to solve has been gone for quite a
while. I think it only existed on jserv1.0. We are not supporting use
of jserv.
john mcnally
Eric Dobbs wrote:
>
> On Thursday, March 28, 2002, at 04:48 PM, Jon Scott Stevens wrote:
>
> > It has been removed from the t3 code base. Just look at what I did to
> > remove
> > it.
>
> Thanks, Jon. Still unclear on one point, though.
> (maybe this should be a vote?)
>
> Should redirection be *removed* for the 2.2 release?
>
> OR
>
> Should the redirection be *deprecated* 2.2 release?
> It's not part of the API, but it is behavior that
> was created purposefully to solve a specific
> problem. It's not exactly a bug. Should that
> behavior be preserved, but discouraged?
>
> -Eric
>
> --
> To unsubscribe, e-mail: <ma...@jakarta.apache.org>
> For additional commands, e-mail: <ma...@jakarta.apache.org>
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: removing redirect code from turbine (was Re: Using turbine with session-cookies disabled)
Posted by Eric Dobbs <er...@dobbse.net>.
On Thursday, March 28, 2002, at 04:48 PM, Jon Scott Stevens wrote:
> It has been removed from the t3 code base. Just look at what I did to
> remove
> it.
Thanks, Jon. Still unclear on one point, though.
(maybe this should be a vote?)
Should redirection be *removed* for the 2.2 release?
OR
Should the redirection be *deprecated* 2.2 release?
It's not part of the API, but it is behavior that
was created purposefully to solve a specific
problem. It's not exactly a bug. Should that
behavior be preserved, but discouraged?
-Eric
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: removing redirect code from turbine (was Re: Using turbine
with session-cookies disabled)
Posted by Jon Scott Stevens <jo...@latchkey.com>.
It has been removed from the t3 code base. Just look at what I did to remove
it.
-jon
on 3/28/02 2:09 PM, "Eric Dobbs" <er...@dobbse.net> wrote:
> Ben Peter and Rodney Schneider on turbine-user are asking
> for redirect code to be removed from turbine before 2.2
> release. Rodney has asked before.
>
> On Thursday, March 28, 2002, at 11:21 AM, Daniel Rall wrote:
>
>> If you think something needs to be done to the source, please send an
>> enumeration of the steps and the reasoning behind them to the
>> turbine-dev@jakara.apache.org list.
>
> Dan,
> Peter Lynch provided patches and rationale back in October:
> <http://www.mail-archive.com/turbine-
> dev%40jakarta.apache.org/msg03660.html>
>
> I looked over the patches this morning. There's distracting
> whitespace changes in the patches, but they don't look too bad
> to me. I didn't try to apply them 'cos I didn't see a
> resolution to the discussion back in October.
>
> I think Peter made his point fairly well, and I would support
> the removal of the redirect code. But I don't know how the
> deprecation rules fit in this case.
>
> If deprecation policy calls for preserving the existing redirect
> functionality, then I offer the following refactoring ideas:
> 1. extract methods on the areas where Peter's patches would have
> removed redirect code.
> 2. deprecate the newly extracted methods
> 3. add a configuration option to enable/disable the redirection
> and make the extracted methods pay attention to the config
> option
>
> If deprecation policy does not apply here, then manually apply
> Peter's changes to the 2.2 code and be done with it.
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
removing redirect code from turbine (was Re: Using turbine with session-cookies disabled)
Posted by Eric Dobbs <er...@dobbse.net>.
Ben Peter and Rodney Schneider on turbine-user are asking
for redirect code to be removed from turbine before 2.2
release. Rodney has asked before.
On Thursday, March 28, 2002, at 11:21 AM, Daniel Rall wrote:
> If you think something needs to be done to the source, please send an
> enumeration of the steps and the reasoning behind them to the
> turbine-dev@jakara.apache.org list.
Dan,
Peter Lynch provided patches and rationale back in October:
<http://www.mail-archive.com/turbine-
dev%40jakarta.apache.org/msg03660.html>
I looked over the patches this morning. There's distracting
whitespace changes in the patches, but they don't look too bad
to me. I didn't try to apply them 'cos I didn't see a
resolution to the discussion back in October.
I think Peter made his point fairly well, and I would support
the removal of the redirect code. But I don't know how the
deprecation rules fit in this case.
If deprecation policy calls for preserving the existing redirect
functionality, then I offer the following refactoring ideas:
1. extract methods on the areas where Peter's patches would have
removed redirect code.
2. deprecate the newly extracted methods
3. add a configuration option to enable/disable the redirection
and make the extracted methods pay attention to the config
option
If deprecation policy does not apply here, then manually apply
Peter's changes to the 2.2 code and be done with it.
-Eric
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Using turbine with session-cookies disabled
Posted by Daniel Rall <dl...@finemaltcoding.com>.
If you think something needs to be done to the source, please send an
enumeration of the steps and the reasoning behind them to the
turbine-dev@jakara.apache.org list.
Thanks, Dan
Ben Peter <bp...@zentropypartners.com> writes:
> Rodney,
>
> thanks for your reply.
>
> does that mean that there is no other workaround but patching if I
> want to use URL-based session propagation?
>
> Cheers,
> Ben
>
> Rodney Schneider wrote:
> > Hi Ben,
>> This patch has still not been committed. I really hope that someone
>> commits it before the Turbine 2.2 release!!
>> Regards,
>> -- Rodney
>> On Thu, 28 Mar 2002 15:04, you wrote:
>>
>>>All,
>>>
>>>is anyone using turbine-2.2-b1 with URL-based session id propagation? I
>>>have set cookies="false" in catalina-4.0.4's server.xml, which results in a
>>>"Horrible Exception: java.lang.Exception: Infinite redirect detected...".
>>>
>>>This issue seems so be rather old, I have found this
>>>http://www.mail-archive.com/turbine-user@jakarta.apache.org/msg05877.html
>>>thread from Jan this year, which describes exactly this problem.
>>>
>>>Am I missing something, or will I have to patch and compile turbine myself
>>>as described in this
>>>http://www.mail-archive.com/turbine-user@jakarta.apache.org/msg05914.html
>>>reply to above posting? (I would rather stick with the ease of the TDK than
>>>digging into compiling myself - or can anyone confirm that has become more
>>>straightforward with maven?)
>>>
>>>Cheers,
>>>Ben
>>>
>> --
>> To unsubscribe, e-mail: <ma...@jakarta.apache.org>
>> For additional commands, e-mail: <ma...@jakarta.apache.org>
>>
>
>
>
> --
> Benjamin Peter +49-69-96244395
> Application Engineer Moerfelder Landstr. 55
> (zentropy:partners) 60598 Frankfurt, Germany
>
>
> --
> To unsubscribe, e-mail: <ma...@jakarta.apache.org>
> For additional commands, e-mail: <ma...@jakarta.apache.org>
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Using turbine with session-cookies disabled
Posted by Ben Peter <bp...@zentropypartners.com>.
Rodney,
cool, that is good news! I'll do that right now.
Cheers,
Ben
Rodney Schneider wrote:
> On Thu, 28 Mar 2002 18:07, you wrote:
>
>>Rodney,
>>
>>thanks for your reply.
>>
>>does that mean that there is no other workaround but patching if I want to
>>use URL-based session propagation?
>>
>>Cheers,
>>Ben
>
>
> Hi Ben,
>
> The next beta release of the tdk will contain the fix for this problem. For
> the moment, you can checkout the latest version of Turbine 2.2 from CVS,
> compile the turbine jar file and drop it in to the WEB-INF/lib directory of
> your webapp.
>
> Regards,
>
> -- Rodney
>
> --
> To unsubscribe, e-mail: <ma...@jakarta.apache.org>
> For additional commands, e-mail: <ma...@jakarta.apache.org>
--
Benjamin Peter +49-69-96244395
Application Engineer Moerfelder Landstr. 55
(zentropy:partners) 60598 Frankfurt, Germany
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Using turbine with session-cookies disabled
Posted by Rodney Schneider <rl...@arcalink.com>.
On Thu, 28 Mar 2002 18:07, you wrote:
> Rodney,
>
> thanks for your reply.
>
> does that mean that there is no other workaround but patching if I want to
> use URL-based session propagation?
>
> Cheers,
> Ben
Hi Ben,
The next beta release of the tdk will contain the fix for this problem. For
the moment, you can checkout the latest version of Turbine 2.2 from CVS,
compile the turbine jar file and drop it in to the WEB-INF/lib directory of
your webapp.
Regards,
-- Rodney
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Using turbine with session-cookies disabled
Posted by Ben Peter <bp...@zentropypartners.com>.
Rodney,
thanks for your reply.
does that mean that there is no other workaround but patching if I want to use
URL-based session propagation?
Cheers,
Ben
Rodney Schneider wrote:
> Hi Ben,
>
> This patch has still not been committed. I really hope that someone commits
> it before the Turbine 2.2 release!!
>
> Regards,
>
> -- Rodney
>
>
> On Thu, 28 Mar 2002 15:04, you wrote:
>
>>All,
>>
>>is anyone using turbine-2.2-b1 with URL-based session id propagation? I
>>have set cookies="false" in catalina-4.0.4's server.xml, which results in a
>>"Horrible Exception: java.lang.Exception: Infinite redirect detected...".
>>
>>This issue seems so be rather old, I have found this
>>http://www.mail-archive.com/turbine-user@jakarta.apache.org/msg05877.html
>>thread from Jan this year, which describes exactly this problem.
>>
>>Am I missing something, or will I have to patch and compile turbine myself
>>as described in this
>>http://www.mail-archive.com/turbine-user@jakarta.apache.org/msg05914.html
>>reply to above posting? (I would rather stick with the ease of the TDK than
>>digging into compiling myself - or can anyone confirm that has become more
>>straightforward with maven?)
>>
>>Cheers,
>>Ben
>>
>
> --
> To unsubscribe, e-mail: <ma...@jakarta.apache.org>
> For additional commands, e-mail: <ma...@jakarta.apache.org>
>
--
Benjamin Peter +49-69-96244395
Application Engineer Moerfelder Landstr. 55
(zentropy:partners) 60598 Frankfurt, Germany
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>
Re: Using turbine with session-cookies disabled
Posted by Rodney Schneider <rl...@arcalink.com>.
Hi Ben,
This patch has still not been committed. I really hope that someone commits
it before the Turbine 2.2 release!!
Regards,
-- Rodney
On Thu, 28 Mar 2002 15:04, you wrote:
> All,
>
> is anyone using turbine-2.2-b1 with URL-based session id propagation? I
> have set cookies="false" in catalina-4.0.4's server.xml, which results in a
> "Horrible Exception: java.lang.Exception: Infinite redirect detected...".
>
> This issue seems so be rather old, I have found this
> http://www.mail-archive.com/turbine-user@jakarta.apache.org/msg05877.html
> thread from Jan this year, which describes exactly this problem.
>
> Am I missing something, or will I have to patch and compile turbine myself
> as described in this
> http://www.mail-archive.com/turbine-user@jakarta.apache.org/msg05914.html
> reply to above posting? (I would rather stick with the ease of the TDK than
> digging into compiling myself - or can anyone confirm that has become more
> straightforward with maven?)
>
> Cheers,
> Ben
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>