Re: Creating a custom session manager -- SOLVED

[Eric Berry <el...@gmail.com>]

Bryan, Thanks so much for sending this a lot earlier. We tried it out
and found that we could simplify it a bit for our needs. I've included
the source here just in case.

What our valve does is just sets the domain on the session cookie, in
the request and response. The first time a user comes to our site,
they get one session cookie for the full domain (foo.evite.com), and
one session cookie for the base domain (.evite.com). Any subsequent
requests to xyz.evite.com get the same session id (While the session
cookie exists).

We needed to do this because we have our own session manager and
wanted to keep things separated as much as possible.

Any advice or comments are welcome.

Thanks, hope this helps,
Eric

On 1/10/07, Bryan Basham <bb...@stillsecure.com> wrote:
>
>  Oops... I had some bugs in the code.  Here's the latest source.
>  -Bryan
>
>
> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>


-- 
Learn from the past. Live in the present. Plan for the future.