You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by pandu yelamanchili <pa...@hotmail.com> on 2004/11/30 04:38:53 UTC

Form Authentication probem with tomat 4.1.30

Hi
I am using Form Authentication on Tomcat 4.1.30 and oracle ojdbc14.jar 
driver. It always fails.

When I used debugger in the JDBCRealm class of Tomcat, All my user id / db 
info is right, but when the username is set on the preparedstatement, it 
does not work. I always get an empty resultset and it fails authentication.  
Any clues will be appreciated.

thanks
Pandu



---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org

JSESSION Internet Explorer

Posted by Alex Korneyev <ak...@mindspring.com>.

Hello all,

 i am hoping someone has seen the following behavior.


 TomcatA sends a redirect to TomcatB

 on the backend, I can see that TomcatB receives a JSESSIONID that was
 originally assigned to it by TomcatA;

 i.e. cookie = JSESSIONID=6EF95FA9AA98E608C555E28875F57054;


 I rewrite reset the jsession id ( see the code bellow ), but


 on the next request i see this:

 cookie = JSESSIONID=6EF95FA9AA98E608C555E28875F57054; JSESSIONID=2251830F6F64DEFC974C19C79F1EABAB

 for some reason using Mozilla works, but I.E. is the one that passes
 2 JSESSIONID variables. Thoughts?

        if (cookies != null && cookies.length > 0)
                {
                        int len = cookies.length;
                        for (int i = 0; i < len; i++)
                        {
                                if (cookies[i].getName().equalsIgnoreCase("jsessionid"))
                                {
                                        cookies[i].setMaxAge(-1);
                                        cookies[i].setPath("/");
                                        _LOGGER.debug("COOKIE VALUE " + cookies[i].getValue() );
                                        _LOGGER.debug("session id:  " +  request.getSession().getId() );
                                        _LOGGER.debug(" comp" + ( request.getSession().getId().equals(cookies[i].getValue())));
                                        if ( request.getSession().getId().equals(cookies[i].getValue()))
                                        {
                                                _LOGGER.debug("equal");
                                                response.addCookie(cookies[i]);
                                        }
                                        else
                                        {
                                                _LOGGER.debug("not equal");
                                                Cookie sessionCookie = new Cookie("JSESSIONID", request.getSession().getId());
                                                response.addCookie(sessionCookie);
                                        }
                                        foundCookie = true;
                                        _LOGGER.debug("updated session cookie");

                                }
                        }
                } 

 

 


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org