session cookie dropped by internet explorer 11

[bu...@dakosy.de]

Hi all,

I'm not sure if you can help me in this case, but you are my last chance 
after contacting RedHat support and using stackoverflow.

In one of our projects we've migrated a web application to JSF 2.1, 
RichFaces 4.5.9.Final and JBoss EAP 6.3. And we've also added DeltaSpike 
1.4.1 to that project.

After that, we are facing some problems with session cookies in Internet 
Explorer 11. I found information that IE11 has problems with session 
cookies, but it seems that this problems are not in general, because I 
only found few information regarding this.

The problem is, when a user is working with Internet Explorer 11, 
sometimes the user will be kicked out randomly before the session expiry 
time exceeds.

For example a user kicked out after around one hour while the user was 
active during that time. The log file contains no exceptions or any other 
information that are in conjunction with it. Only our registrated 
SessionListener logged out that a new session was created. After five 
hours (we've set the session-timeout value to "300" (5h) in web.xml) the 
SessionListener also logged out the the first session (before the user 
kicked out) was destroyed.

The access logging shows that the client simply stopped providing the 
session cookie to JBoss.

We've already contacted RedHat support regarding this and they told us:
"Since the container isn't expiring or removing the session here and it is 
only seen on IE, it looks like it is an unfortunate IE bug dropping the 
session."

Is there anyone else who noticed the same behavior when working with IE11?

Because we've added DeltaSpike to the project and we don't facing this 
issue before, maybe DeltaSpike causing the problems in IE11. So maybe you 
have any idea how we can solve the issue?

Thank you very much in advance.

Regards,
Marco

Re: Re: Re: Re: session cookie dropped by internet explorer 11

[Thomas Andraschko <an...@gmail.com>]

Hi,

per default the deltaspike-jsf-module-impl is not included in the
playground pom as different profiles needs different versions of the impl
module (EE6 / EE7).
You can just temp add the dependency in the pom or run via:
mvn clean package -Prun-wildfly-8.0.0

You can find other run profiles in the playground pom.

Regards,
Thomas

2015-11-16 16:43 GMT+01:00 <bu...@dakosy.de>:

> Hi,
>
> I just build the deltaspike-jsf-playground module but I can't deploy it
> due to the following exception:
>
> 16:39:02,798 ERROR [org.jboss.msc.service.fail] |-| MSC000001: Failed to
> start service jboss.deployment.unit."ds.war".WeldStartService:
> *org.jboss.msc.service.StartException* in service
> jboss.deployment.unit."ds.war".WeldStartService: Failed to start service
>         at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(
> *ServiceControllerImpl.java:1936*)
> [jboss-msc-1.1.5.Final-redhat-1.jar:1.1.5.Final-redhat-1]
>         at java.util.concurrent.ThreadPoolExecutor.runWorker(
> *ThreadPoolExecutor.java:1145*) [rt.jar:1.7.0_40]
>         at java.util.concurrent.ThreadPoolExecutor$Worker.run(
> *ThreadPoolExecutor.java:615*) [rt.jar:1.7.0_40]
>         at java.lang.Thread.run(*Thread.java:724*) [rt.jar:1.7.0_40]
> Caused by: *org.jboss.weld.exceptions.DeploymentException*: WELD-001408
> Unsatisfied dependencies for type [ClientWindow] with qualifiers [@Default]
> at injection point [[field] @Inject private
> org.apache.deltaspike.playground.windowhandling.ViewActionController.clientWindow]
>         at org.jboss.weld.bootstrap.Validator.validateInjectionPoint(
> *Validator.java:315*)
>         at org.jboss.weld.bootstrap.Validator.validateInjectionPoint(
> *Validator.java:284*)
>         at org.jboss.weld.bootstrap.Validator.validateBean(
> *Validator.java:147*)
>         at org.jboss.weld.bootstrap.Validator.validateRIBean(
> *Validator.java:167*)
>         at org.jboss.weld.bootstrap.Validator.validateBeans(
> *Validator.java:386*)
>         at org.jboss.weld.bootstrap.Validator.validateDeployment(
> *Validator.java:371*)
>         at org.jboss.weld.bootstrap.WeldBootstrap.validateBeans(
> *WeldBootstrap.java:379*)
>         at org.jboss.as.weld.WeldStartService.start(
> *WeldStartService.java:64*)
>         at
> org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(
> *ServiceControllerImpl.java:1980*)
> [jboss-msc-1.1.5.Final-redhat-1.jar:1.1.5.Final-redhat-1]
>         at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(
> *ServiceControllerImpl.java:1913*)
> [jboss-msc-1.1.5.Final-redhat-1.jar:1.1.5.Final-redhat-1]
>         ... 3 more
>
> I'm using JBoss EAP 6.3. I'm not sure what I doing wrong.
>
> Regards,
> Marco
>
> Mit freundlichen Grüßen / Best regards
>
>
> *i.A. Marco Bulau - Port Communication Services - *
>
> *DAKOSY Datenkommunikationssystem AG*
> Mattentwiete 2, 20457 Hamburg
> http://www.dakosy.de
>
> Phone + 49 40 370 03 - 0
> Fax + 49 40 370 03 - 370
> mailto:bulau@dakosy.de <bu...@dakosy.de>
>
> -----------------------------------------------------------------
> Sitz der Gesellschaft: Hamburg, HRB 78314
> Aufsichtsrat: Dr. Johann Killinger (Vors.)
> Vorstand: Dieter Spark, Ulrich Wrage
> -----------------------------------------------------------------
>
>
> Von: Thomas Andraschko <an...@gmail.com> An:
> users@deltaspike.apache.org, Datum: 16.11.2015 15:15 Betreff: Re: Re: Re:
> session cookie dropped by internet explorer 11
> ------------------------------
>
>
>
> Hi,
>
> no idea sorry but feel free to provide a small maven example project to
> demonstrate your issue.
>
> Regards,
> Thomas
>
> 2015-11-16 15:11 GMT+01:00 <bu...@dakosy.de>:
>
> > Hi,
> >
> > to locate my problem with session cookies in IE 11, I'm trying to use
> > CLIENTWINDOW mode instead of LAZY mode.
> >
> > To enable "ClientWindowStoreWindowTreeEnabledOnAjaxRequest" and
> > "ClientWindowStoreWindowTreeEnabledOnButtonClick" I also have to update
> > DeltaSpike from 1.4.1 to 1.5.0 or higher.
> >
> > But if I changed DefaultWindowMode from LAZY to CLIENTWINDOW with
> > DeltaSpike 1.5.0 or higher, I'm always getting the following exception:
> >
> > "org.jboss.weld.context.ContextNotActiveException: WELD-001303 No active
> > contexts for scope type
> org.apache.deltaspike.core.api.scope.WindowScoped"
> >
> > I already added "<ds:windowId />" to my template.
> >
> > With DeltaSpike 1.4.1 CLIENTWINDOW is working but I can't change
> > "ClientWindowStoreWindowTreeEnabledOnAjaxRequest" and
> > "ClientWindowStoreWindowTreeEnabledOnButtonClick".
> >
> > I've changed the DefaultWindowMode by extending JsfModuleConfig and
> > overwriting getDefaultWindowMode().
> >
> > Do you have any idea why CLIENTWINDOW is not working in my case?
> >
> > Thanks & regards
> > Marco
> >
> >
> >
> > Von:
> > Thomas Andraschko <an...@gmail.com>
> > An:
> > users@deltaspike.apache.org,
> > Datum:
> > 09.11.2015 10:30
> > Betreff:
> > Re: Re: session cookie dropped by internet explorer 11
> >
> >
> >
> > Hi,
> >
> > no, only scopes which are based on the WindowContext / window handling.
> > Currently ViewAccessScoped, WindowScoped, GroupedConversationScoped.
> >
> > Could you please create a issue to fix/enhance the part of the
> > documentation you posted? Thanks.
> >
> > Regards,
> > Thomas
> >
> > 2015-11-09 10:25 GMT+01:00 <bu...@dakosy.de>:
> >
> > > Hi Thomas,
> > >
> > > I just want to try disabling the window handling as you described below
> > > when I found the following in the documentation:
> > >
> > > "LAZY [...] Therefore it could happen that @ViewAccessScoped or other
> > > scopes will unintentionally be destroyed."
> > >
> > > What do you mean with other scopes? Is it possible that the session
> > scope
> > > will unintentionally be destroyed?
> > >
> > > Regards,
> > > Marco
> > >
> > >
> > >
> > > Von:
> > > Thomas Andraschko <an...@gmail.com>
> > > An:
> > > users@deltaspike.apache.org,
> > > Datum:
> > > 23.09.2015 09:44
> > > Betreff:
> > > Re: session cookie dropped by internet explorer 11
> > >
> > >
> > >
> > > Hi,
> > >
> > > we do some cookie dropping in the windowhandling but this should only
> > > affect the cookies for the windowhandling:
> > >
> > >
> >
> >
> https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L248
> >
> > >
> > >
> > >
> >
> >
> https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L309
> >
> > >
> > >
> > >
> >
> >
> https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/java/org/apache/deltaspike/jsf/impl/component/window/WindowIdHtmlRenderer.java#L97
> >
> > >
> > >
> > > Could you try to disable the whole window handling and check if it
> still
> > > occurs?
> > > You can do that via:
> > >
> > > @Specializespublic class MyJsfModuleConfig extends JsfModuleConfig
> > > {
> > >     @Override
> > >     public ClientWindowConfig.ClientWindowRenderMode
> > > getDefaultWindowMode()
> > >     {
> > >         return ClientWindowConfig.ClientWindowRenderMode.NONE;
> > >     }
> > > }
> > >
> > > Also make sure that you DON'T add the ds:windowId component to your
> > > views for this test.
> > >
> > > If the problem still occurs, i have no idea sorry.
> > >
> > > Regards,
> > >
> > > Thomas
> > >
> > >
> > >
> > >
> > >
> > >
> > > 2015-09-23 9:23 GMT+02:00 <bu...@dakosy.de>:
> > >
> > > > Hi all,
> > > >
> > > > I'm not sure if you can help me in this case, but you are my last
> > chance
> > > > after contacting RedHat support and using stackoverflow.
> > > >
> > > > In one of our projects we've migrated a web application to JSF 2.1,
> > > > RichFaces 4.5.9.Final and JBoss EAP 6.3. And we've also added
> > DeltaSpike
> > > > 1.4.1 to that project.
> > > >
> > > > After that, we are facing some problems with session cookies in
> > Internet
> > > > Explorer 11. I found information that IE11 has problems with session
> > > > cookies, but it seems that this problems are not in general, because
> I
> > > > only found few information regarding this.
> > > >
> > > > The problem is, when a user is working with Internet Explorer 11,
> > > > sometimes the user will be kicked out randomly before the session
> > expiry
> > > > time exceeds.
> > > >
> > > > For example a user kicked out after around one hour while the user
> was
> > > > active during that time. The log file contains no exceptions or any
> > > other
> > > > information that are in conjunction with it. Only our registrated
> > > > SessionListener logged out that a new session was created. After five
> > > > hours (we've set the session-timeout value to "300" (5h) in web.xml)
> > the
> > > > SessionListener also logged out the the first session (before the
> user
> > > > kicked out) was destroyed.
> > > >
> > > > The access logging shows that the client simply stopped providing the
> > > > session cookie to JBoss.
> > > >
> > > > We've already contacted RedHat support regarding this and they told
> > us:
> > > > "Since the container isn't expiring or removing the session here and
> > it
> > > is
> > > > only seen on IE, it looks like it is an unfortunate IE bug dropping
> > the
> > > > session."
> > > >
> > > > Is there anyone else who noticed the same behavior when working with
> > > IE11?
> > > >
> > > > Because we've added DeltaSpike to the project and we don't facing
> this
> > > > issue before, maybe DeltaSpike causing the problems in IE11. So maybe
> > > you
> > > > have any idea how we can solve the issue?
> > > >
> > > > Thank you very much in advance.
> > > >
> > > > Regards,
> > > > Marco
> > >
> > >
> > >
> >
> >
> >
>
>
>

Antwort: Re: Re: Re: session cookie dropped by internet explorer 11

[bu...@dakosy.de]

Hi,

I just build the deltaspike-jsf-playground module but I can't deploy it 
due to the following exception:

16:39:02,798 ERROR [org.jboss.msc.service.fail] |-| MSC000001: Failed to 
start service jboss.deployment.unit."ds.war".WeldStartService: 
org.jboss.msc.service.StartException in service 
jboss.deployment.unit."ds.war".WeldStartService: Failed to start service
        at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(
ServiceControllerImpl.java:1936) 
[jboss-msc-1.1.5.Final-redhat-1.jar:1.1.5.Final-redhat-1]
        at java.util.concurrent.ThreadPoolExecutor.runWorker(
ThreadPoolExecutor.java:1145) [rt.jar:1.7.0_40]
        at java.util.concurrent.ThreadPoolExecutor$Worker.run(
ThreadPoolExecutor.java:615) [rt.jar:1.7.0_40]
        at java.lang.Thread.run(Thread.java:724) [rt.jar:1.7.0_40]
Caused by: org.jboss.weld.exceptions.DeploymentException: WELD-001408 
Unsatisfied dependencies for type [ClientWindow] with qualifiers 
[@Default] at injection point [[field] @Inject private 
org.apache.deltaspike.playground.windowhandling.ViewActionController.clientWindow]
        at org.jboss.weld.bootstrap.Validator.validateInjectionPoint(
Validator.java:315)
        at org.jboss.weld.bootstrap.Validator.validateInjectionPoint(
Validator.java:284)
        at org.jboss.weld.bootstrap.Validator.validateBean(
Validator.java:147)
        at org.jboss.weld.bootstrap.Validator.validateRIBean(
Validator.java:167)
        at org.jboss.weld.bootstrap.Validator.validateBeans(
Validator.java:386)
        at org.jboss.weld.bootstrap.Validator.validateDeployment(
Validator.java:371)
        at org.jboss.weld.bootstrap.WeldBootstrap.validateBeans(
WeldBootstrap.java:379)
        at org.jboss.as.weld.WeldStartService.start(
WeldStartService.java:64)
        at 
org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(
ServiceControllerImpl.java:1980) 
[jboss-msc-1.1.5.Final-redhat-1.jar:1.1.5.Final-redhat-1]
        at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(
ServiceControllerImpl.java:1913) 
[jboss-msc-1.1.5.Final-redhat-1.jar:1.1.5.Final-redhat-1]
        ... 3 more

I'm using JBoss EAP 6.3. I'm not sure what I doing wrong.

Regards,
Marco

Mit freundlichen Grüßen / Best regards
i.A. Marco Bulau
- Port Communication Services - 

DAKOSY Datenkommunikationssystem AG
Mattentwiete 2, 20457 Hamburg 
http://www.dakosy.de 
Phone + 49 40 370 03 - 0
Fax + 49 40 370 03 - 370
mailto:bulau@dakosy.de
-----------------------------------------------------------------
Sitz der Gesellschaft: Hamburg, HRB 78314
Aufsichtsrat: Dr. Johann Killinger (Vors.)
Vorstand: Dieter Spark, Ulrich Wrage
-----------------------------------------------------------------



Von:
Thomas Andraschko <an...@gmail.com>
An:
users@deltaspike.apache.org, 
Datum:
16.11.2015 15:15
Betreff:
Re: Re: Re: session cookie dropped by internet explorer 11



Hi,

no idea sorry but feel free to provide a small maven example project to
demonstrate your issue.

Regards,
Thomas

2015-11-16 15:11 GMT+01:00 <bu...@dakosy.de>:

> Hi,
>
> to locate my problem with session cookies in IE 11, I'm trying to use
> CLIENTWINDOW mode instead of LAZY mode.
>
> To enable "ClientWindowStoreWindowTreeEnabledOnAjaxRequest" and
> "ClientWindowStoreWindowTreeEnabledOnButtonClick" I also have to update
> DeltaSpike from 1.4.1 to 1.5.0 or higher.
>
> But if I changed DefaultWindowMode from LAZY to CLIENTWINDOW with
> DeltaSpike 1.5.0 or higher, I'm always getting the following exception:
>
> "org.jboss.weld.context.ContextNotActiveException: WELD-001303 No active
> contexts for scope type 
org.apache.deltaspike.core.api.scope.WindowScoped"
>
> I already added "<ds:windowId />" to my template.
>
> With DeltaSpike 1.4.1 CLIENTWINDOW is working but I can't change
> "ClientWindowStoreWindowTreeEnabledOnAjaxRequest" and
> "ClientWindowStoreWindowTreeEnabledOnButtonClick".
>
> I've changed the DefaultWindowMode by extending JsfModuleConfig and
> overwriting getDefaultWindowMode().
>
> Do you have any idea why CLIENTWINDOW is not working in my case?
>
> Thanks & regards
> Marco
>
>
>
> Von:
> Thomas Andraschko <an...@gmail.com>
> An:
> users@deltaspike.apache.org,
> Datum:
> 09.11.2015 10:30
> Betreff:
> Re: Re: session cookie dropped by internet explorer 11
>
>
>
> Hi,
>
> no, only scopes which are based on the WindowContext / window handling.
> Currently ViewAccessScoped, WindowScoped, GroupedConversationScoped.
>
> Could you please create a issue to fix/enhance the part of the
> documentation you posted? Thanks.
>
> Regards,
> Thomas
>
> 2015-11-09 10:25 GMT+01:00 <bu...@dakosy.de>:
>
> > Hi Thomas,
> >
> > I just want to try disabling the window handling as you described 
below
> > when I found the following in the documentation:
> >
> > "LAZY [...] Therefore it could happen that @ViewAccessScoped or other
> > scopes will unintentionally be destroyed."
> >
> > What do you mean with other scopes? Is it possible that the session
> scope
> > will unintentionally be destroyed?
> >
> > Regards,
> > Marco
> >
> >
> >
> > Von:
> > Thomas Andraschko <an...@gmail.com>
> > An:
> > users@deltaspike.apache.org,
> > Datum:
> > 23.09.2015 09:44
> > Betreff:
> > Re: session cookie dropped by internet explorer 11
> >
> >
> >
> > Hi,
> >
> > we do some cookie dropping in the windowhandling but this should only
> > affect the cookies for the windowhandling:
> >
> >
>
> 
https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L248

>
> >
> >
> >
>
> 
https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L309

>
> >
> >
> >
>
> 
https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/java/org/apache/deltaspike/jsf/impl/component/window/WindowIdHtmlRenderer.java#L97

>
> >
> >
> > Could you try to disable the whole window handling and check if it 
still
> > occurs?
> > You can do that via:
> >
> > @Specializespublic class MyJsfModuleConfig extends JsfModuleConfig
> > {
> >     @Override
> >     public ClientWindowConfig.ClientWindowRenderMode
> > getDefaultWindowMode()
> >     {
> >         return ClientWindowConfig.ClientWindowRenderMode.NONE;
> >     }
> > }
> >
> > Also make sure that you DON'T add the ds:windowId component to your
> > views for this test.
> >
> > If the problem still occurs, i have no idea sorry.
> >
> > Regards,
> >
> > Thomas
> >
> >
> >
> >
> >
> >
> > 2015-09-23 9:23 GMT+02:00 <bu...@dakosy.de>:
> >
> > > Hi all,
> > >
> > > I'm not sure if you can help me in this case, but you are my last
> chance
> > > after contacting RedHat support and using stackoverflow.
> > >
> > > In one of our projects we've migrated a web application to JSF 2.1,
> > > RichFaces 4.5.9.Final and JBoss EAP 6.3. And we've also added
> DeltaSpike
> > > 1.4.1 to that project.
> > >
> > > After that, we are facing some problems with session cookies in
> Internet
> > > Explorer 11. I found information that IE11 has problems with session
> > > cookies, but it seems that this problems are not in general, because 
I
> > > only found few information regarding this.
> > >
> > > The problem is, when a user is working with Internet Explorer 11,
> > > sometimes the user will be kicked out randomly before the session
> expiry
> > > time exceeds.
> > >
> > > For example a user kicked out after around one hour while the user 
was
> > > active during that time. The log file contains no exceptions or any
> > other
> > > information that are in conjunction with it. Only our registrated
> > > SessionListener logged out that a new session was created. After 
five
> > > hours (we've set the session-timeout value to "300" (5h) in web.xml)
> the
> > > SessionListener also logged out the the first session (before the 
user
> > > kicked out) was destroyed.
> > >
> > > The access logging shows that the client simply stopped providing 
the
> > > session cookie to JBoss.
> > >
> > > We've already contacted RedHat support regarding this and they told
> us:
> > > "Since the container isn't expiring or removing the session here and
> it
> > is
> > > only seen on IE, it looks like it is an unfortunate IE bug dropping
> the
> > > session."
> > >
> > > Is there anyone else who noticed the same behavior when working with
> > IE11?
> > >
> > > Because we've added DeltaSpike to the project and we don't facing 
this
> > > issue before, maybe DeltaSpike causing the problems in IE11. So 
maybe
> > you
> > > have any idea how we can solve the issue?
> > >
> > > Thank you very much in advance.
> > >
> > > Regards,
> > > Marco
> >
> >
> >
>
>
>

Re: Re: Re: session cookie dropped by internet explorer 11

[Thomas Andraschko <an...@gmail.com>]

Hi,

no idea sorry but feel free to provide a small maven example project to
demonstrate your issue.

Regards,
Thomas

2015-11-16 15:11 GMT+01:00 <bu...@dakosy.de>:

> Hi,
>
> to locate my problem with session cookies in IE 11, I'm trying to use
> CLIENTWINDOW mode instead of LAZY mode.
>
> To enable "ClientWindowStoreWindowTreeEnabledOnAjaxRequest" and
> "ClientWindowStoreWindowTreeEnabledOnButtonClick" I also have to update
> DeltaSpike from 1.4.1 to 1.5.0 or higher.
>
> But if I changed DefaultWindowMode from LAZY to CLIENTWINDOW with
> DeltaSpike 1.5.0 or higher, I'm always getting the following exception:
>
> "org.jboss.weld.context.ContextNotActiveException: WELD-001303 No active
> contexts for scope type org.apache.deltaspike.core.api.scope.WindowScoped"
>
> I already added "<ds:windowId />" to my template.
>
> With DeltaSpike 1.4.1 CLIENTWINDOW is working but I can't change
> "ClientWindowStoreWindowTreeEnabledOnAjaxRequest" and
> "ClientWindowStoreWindowTreeEnabledOnButtonClick".
>
> I've changed the DefaultWindowMode by extending JsfModuleConfig and
> overwriting getDefaultWindowMode().
>
> Do you have any idea why CLIENTWINDOW is not working in my case?
>
> Thanks & regards
> Marco
>
>
>
> Von:
> Thomas Andraschko <an...@gmail.com>
> An:
> users@deltaspike.apache.org,
> Datum:
> 09.11.2015 10:30
> Betreff:
> Re: Re: session cookie dropped by internet explorer 11
>
>
>
> Hi,
>
> no, only scopes which are based on the WindowContext / window handling.
> Currently ViewAccessScoped, WindowScoped, GroupedConversationScoped.
>
> Could you please create a issue to fix/enhance the part of the
> documentation you posted? Thanks.
>
> Regards,
> Thomas
>
> 2015-11-09 10:25 GMT+01:00 <bu...@dakosy.de>:
>
> > Hi Thomas,
> >
> > I just want to try disabling the window handling as you described below
> > when I found the following in the documentation:
> >
> > "LAZY [...] Therefore it could happen that @ViewAccessScoped or other
> > scopes will unintentionally be destroyed."
> >
> > What do you mean with other scopes? Is it possible that the session
> scope
> > will unintentionally be destroyed?
> >
> > Regards,
> > Marco
> >
> >
> >
> > Von:
> > Thomas Andraschko <an...@gmail.com>
> > An:
> > users@deltaspike.apache.org,
> > Datum:
> > 23.09.2015 09:44
> > Betreff:
> > Re: session cookie dropped by internet explorer 11
> >
> >
> >
> > Hi,
> >
> > we do some cookie dropping in the windowhandling but this should only
> > affect the cookies for the windowhandling:
> >
> >
>
> https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L248
>
> >
> >
> >
>
> https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L309
>
> >
> >
> >
>
> https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/java/org/apache/deltaspike/jsf/impl/component/window/WindowIdHtmlRenderer.java#L97
>
> >
> >
> > Could you try to disable the whole window handling and check if it still
> > occurs?
> > You can do that via:
> >
> > @Specializespublic class MyJsfModuleConfig extends JsfModuleConfig
> > {
> >     @Override
> >     public ClientWindowConfig.ClientWindowRenderMode
> > getDefaultWindowMode()
> >     {
> >         return ClientWindowConfig.ClientWindowRenderMode.NONE;
> >     }
> > }
> >
> > Also make sure that you DON'T add the ds:windowId component to your
> > views for this test.
> >
> > If the problem still occurs, i have no idea sorry.
> >
> > Regards,
> >
> > Thomas
> >
> >
> >
> >
> >
> >
> > 2015-09-23 9:23 GMT+02:00 <bu...@dakosy.de>:
> >
> > > Hi all,
> > >
> > > I'm not sure if you can help me in this case, but you are my last
> chance
> > > after contacting RedHat support and using stackoverflow.
> > >
> > > In one of our projects we've migrated a web application to JSF 2.1,
> > > RichFaces 4.5.9.Final and JBoss EAP 6.3. And we've also added
> DeltaSpike
> > > 1.4.1 to that project.
> > >
> > > After that, we are facing some problems with session cookies in
> Internet
> > > Explorer 11. I found information that IE11 has problems with session
> > > cookies, but it seems that this problems are not in general, because I
> > > only found few information regarding this.
> > >
> > > The problem is, when a user is working with Internet Explorer 11,
> > > sometimes the user will be kicked out randomly before the session
> expiry
> > > time exceeds.
> > >
> > > For example a user kicked out after around one hour while the user was
> > > active during that time. The log file contains no exceptions or any
> > other
> > > information that are in conjunction with it. Only our registrated
> > > SessionListener logged out that a new session was created. After five
> > > hours (we've set the session-timeout value to "300" (5h) in web.xml)
> the
> > > SessionListener also logged out the the first session (before the user
> > > kicked out) was destroyed.
> > >
> > > The access logging shows that the client simply stopped providing the
> > > session cookie to JBoss.
> > >
> > > We've already contacted RedHat support regarding this and they told
> us:
> > > "Since the container isn't expiring or removing the session here and
> it
> > is
> > > only seen on IE, it looks like it is an unfortunate IE bug dropping
> the
> > > session."
> > >
> > > Is there anyone else who noticed the same behavior when working with
> > IE11?
> > >
> > > Because we've added DeltaSpike to the project and we don't facing this
> > > issue before, maybe DeltaSpike causing the problems in IE11. So maybe
> > you
> > > have any idea how we can solve the issue?
> > >
> > > Thank you very much in advance.
> > >
> > > Regards,
> > > Marco
> >
> >
> >
>
>
>

Antwort: Re: Re: session cookie dropped by internet explorer 11

[bu...@dakosy.de]

Hi,

to locate my problem with session cookies in IE 11, I'm trying to use 
CLIENTWINDOW mode instead of LAZY mode.

To enable "ClientWindowStoreWindowTreeEnabledOnAjaxRequest" and 
"ClientWindowStoreWindowTreeEnabledOnButtonClick" I also have to update 
DeltaSpike from 1.4.1 to 1.5.0 or higher.

But if I changed DefaultWindowMode from LAZY to CLIENTWINDOW with 
DeltaSpike 1.5.0 or higher, I'm always getting the following exception:

"org.jboss.weld.context.ContextNotActiveException: WELD-001303 No active 
contexts for scope type org.apache.deltaspike.core.api.scope.WindowScoped"

I already added "<ds:windowId />" to my template.

With DeltaSpike 1.4.1 CLIENTWINDOW is working but I can't change 
"ClientWindowStoreWindowTreeEnabledOnAjaxRequest" and 
"ClientWindowStoreWindowTreeEnabledOnButtonClick".

I've changed the DefaultWindowMode by extending JsfModuleConfig and 
overwriting getDefaultWindowMode().

Do you have any idea why CLIENTWINDOW is not working in my case?

Thanks & regards
Marco



Von:
Thomas Andraschko <an...@gmail.com>
An:
users@deltaspike.apache.org, 
Datum:
09.11.2015 10:30
Betreff:
Re: Re: session cookie dropped by internet explorer 11



Hi,

no, only scopes which are based on the WindowContext / window handling.
Currently ViewAccessScoped, WindowScoped, GroupedConversationScoped.

Could you please create a issue to fix/enhance the part of the
documentation you posted? Thanks.

Regards,
Thomas

2015-11-09 10:25 GMT+01:00 <bu...@dakosy.de>:

> Hi Thomas,
>
> I just want to try disabling the window handling as you described below
> when I found the following in the documentation:
>
> "LAZY [...] Therefore it could happen that @ViewAccessScoped or other
> scopes will unintentionally be destroyed."
>
> What do you mean with other scopes? Is it possible that the session 
scope
> will unintentionally be destroyed?
>
> Regards,
> Marco
>
>
>
> Von:
> Thomas Andraschko <an...@gmail.com>
> An:
> users@deltaspike.apache.org,
> Datum:
> 23.09.2015 09:44
> Betreff:
> Re: session cookie dropped by internet explorer 11
>
>
>
> Hi,
>
> we do some cookie dropping in the windowhandling but this should only
> affect the cookies for the windowhandling:
>
> 
https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L248

>
>
> 
https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L309

>
>
> 
https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/java/org/apache/deltaspike/jsf/impl/component/window/WindowIdHtmlRenderer.java#L97

>
>
> Could you try to disable the whole window handling and check if it still
> occurs?
> You can do that via:
>
> @Specializespublic class MyJsfModuleConfig extends JsfModuleConfig
> {
>     @Override
>     public ClientWindowConfig.ClientWindowRenderMode
> getDefaultWindowMode()
>     {
>         return ClientWindowConfig.ClientWindowRenderMode.NONE;
>     }
> }
>
> Also make sure that you DON'T add the ds:windowId component to your
> views for this test.
>
> If the problem still occurs, i have no idea sorry.
>
> Regards,
>
> Thomas
>
>
>
>
>
>
> 2015-09-23 9:23 GMT+02:00 <bu...@dakosy.de>:
>
> > Hi all,
> >
> > I'm not sure if you can help me in this case, but you are my last 
chance
> > after contacting RedHat support and using stackoverflow.
> >
> > In one of our projects we've migrated a web application to JSF 2.1,
> > RichFaces 4.5.9.Final and JBoss EAP 6.3. And we've also added 
DeltaSpike
> > 1.4.1 to that project.
> >
> > After that, we are facing some problems with session cookies in 
Internet
> > Explorer 11. I found information that IE11 has problems with session
> > cookies, but it seems that this problems are not in general, because I
> > only found few information regarding this.
> >
> > The problem is, when a user is working with Internet Explorer 11,
> > sometimes the user will be kicked out randomly before the session 
expiry
> > time exceeds.
> >
> > For example a user kicked out after around one hour while the user was
> > active during that time. The log file contains no exceptions or any
> other
> > information that are in conjunction with it. Only our registrated
> > SessionListener logged out that a new session was created. After five
> > hours (we've set the session-timeout value to "300" (5h) in web.xml) 
the
> > SessionListener also logged out the the first session (before the user
> > kicked out) was destroyed.
> >
> > The access logging shows that the client simply stopped providing the
> > session cookie to JBoss.
> >
> > We've already contacted RedHat support regarding this and they told 
us:
> > "Since the container isn't expiring or removing the session here and 
it
> is
> > only seen on IE, it looks like it is an unfortunate IE bug dropping 
the
> > session."
> >
> > Is there anyone else who noticed the same behavior when working with
> IE11?
> >
> > Because we've added DeltaSpike to the project and we don't facing this
> > issue before, maybe DeltaSpike causing the problems in IE11. So maybe
> you
> > have any idea how we can solve the issue?
> >
> > Thank you very much in advance.
> >
> > Regards,
> > Marco
>
>
>

Re: Re: session cookie dropped by internet explorer 11

[Thomas Andraschko <an...@gmail.com>]

Hi,

no, only scopes which are based on the WindowContext / window handling.
Currently ViewAccessScoped, WindowScoped, GroupedConversationScoped.

Could you please create a issue to fix/enhance the part of the
documentation you posted? Thanks.

Regards,
Thomas

2015-11-09 10:25 GMT+01:00 <bu...@dakosy.de>:

> Hi Thomas,
>
> I just want to try disabling the window handling as you described below
> when I found the following in the documentation:
>
> "LAZY [...] Therefore it could happen that @ViewAccessScoped or other
> scopes will unintentionally be destroyed."
>
> What do you mean with other scopes? Is it possible that the session scope
> will unintentionally be destroyed?
>
> Regards,
> Marco
>
>
>
> Von:
> Thomas Andraschko <an...@gmail.com>
> An:
> users@deltaspike.apache.org,
> Datum:
> 23.09.2015 09:44
> Betreff:
> Re: session cookie dropped by internet explorer 11
>
>
>
> Hi,
>
> we do some cookie dropping in the windowhandling but this should only
> affect the cookies for the windowhandling:
>
> https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L248
>
>
> https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L309
>
>
> https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/java/org/apache/deltaspike/jsf/impl/component/window/WindowIdHtmlRenderer.java#L97
>
>
> Could you try to disable the whole window handling and check if it still
> occurs?
> You can do that via:
>
> @Specializespublic class MyJsfModuleConfig extends JsfModuleConfig
> {
>     @Override
>     public ClientWindowConfig.ClientWindowRenderMode
> getDefaultWindowMode()
>     {
>         return ClientWindowConfig.ClientWindowRenderMode.NONE;
>     }
> }
>
> Also make sure that you DON'T add the ds:windowId component to your
> views for this test.
>
> If the problem still occurs, i have no idea sorry.
>
> Regards,
>
> Thomas
>
>
>
>
>
>
> 2015-09-23 9:23 GMT+02:00 <bu...@dakosy.de>:
>
> > Hi all,
> >
> > I'm not sure if you can help me in this case, but you are my last chance
> > after contacting RedHat support and using stackoverflow.
> >
> > In one of our projects we've migrated a web application to JSF 2.1,
> > RichFaces 4.5.9.Final and JBoss EAP 6.3. And we've also added DeltaSpike
> > 1.4.1 to that project.
> >
> > After that, we are facing some problems with session cookies in Internet
> > Explorer 11. I found information that IE11 has problems with session
> > cookies, but it seems that this problems are not in general, because I
> > only found few information regarding this.
> >
> > The problem is, when a user is working with Internet Explorer 11,
> > sometimes the user will be kicked out randomly before the session expiry
> > time exceeds.
> >
> > For example a user kicked out after around one hour while the user was
> > active during that time. The log file contains no exceptions or any
> other
> > information that are in conjunction with it. Only our registrated
> > SessionListener logged out that a new session was created. After five
> > hours (we've set the session-timeout value to "300" (5h) in web.xml) the
> > SessionListener also logged out the the first session (before the user
> > kicked out) was destroyed.
> >
> > The access logging shows that the client simply stopped providing the
> > session cookie to JBoss.
> >
> > We've already contacted RedHat support regarding this and they told us:
> > "Since the container isn't expiring or removing the session here and it
> is
> > only seen on IE, it looks like it is an unfortunate IE bug dropping the
> > session."
> >
> > Is there anyone else who noticed the same behavior when working with
> IE11?
> >
> > Because we've added DeltaSpike to the project and we don't facing this
> > issue before, maybe DeltaSpike causing the problems in IE11. So maybe
> you
> > have any idea how we can solve the issue?
> >
> > Thank you very much in advance.
> >
> > Regards,
> > Marco
>
>
>

Antwort: Re: session cookie dropped by internet explorer 11

[bu...@dakosy.de]

Hi Thomas,

I just want to try disabling the window handling as you described below 
when I found the following in the documentation:

"LAZY [...] Therefore it could happen that @ViewAccessScoped or other 
scopes will unintentionally be destroyed."

What do you mean with other scopes? Is it possible that the session scope 
will unintentionally be destroyed?

Regards,
Marco



Von:
Thomas Andraschko <an...@gmail.com>
An:
users@deltaspike.apache.org, 
Datum:
23.09.2015 09:44
Betreff:
Re: session cookie dropped by internet explorer 11



Hi,

we do some cookie dropping in the windowhandling but this should only
affect the cookies for the windowhandling:
https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L248

https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L309

https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/java/org/apache/deltaspike/jsf/impl/component/window/WindowIdHtmlRenderer.java#L97


Could you try to disable the whole window handling and check if it still
occurs?
You can do that via:

@Specializespublic class MyJsfModuleConfig extends JsfModuleConfig
{
    @Override
    public ClientWindowConfig.ClientWindowRenderMode 
getDefaultWindowMode()
    {
        return ClientWindowConfig.ClientWindowRenderMode.NONE;
    }
}

Also make sure that you DON'T add the ds:windowId component to your
views for this test.

If the problem still occurs, i have no idea sorry.

Regards,

Thomas






2015-09-23 9:23 GMT+02:00 <bu...@dakosy.de>:

> Hi all,
>
> I'm not sure if you can help me in this case, but you are my last chance
> after contacting RedHat support and using stackoverflow.
>
> In one of our projects we've migrated a web application to JSF 2.1,
> RichFaces 4.5.9.Final and JBoss EAP 6.3. And we've also added DeltaSpike
> 1.4.1 to that project.
>
> After that, we are facing some problems with session cookies in Internet
> Explorer 11. I found information that IE11 has problems with session
> cookies, but it seems that this problems are not in general, because I
> only found few information regarding this.
>
> The problem is, when a user is working with Internet Explorer 11,
> sometimes the user will be kicked out randomly before the session expiry
> time exceeds.
>
> For example a user kicked out after around one hour while the user was
> active during that time. The log file contains no exceptions or any 
other
> information that are in conjunction with it. Only our registrated
> SessionListener logged out that a new session was created. After five
> hours (we've set the session-timeout value to "300" (5h) in web.xml) the
> SessionListener also logged out the the first session (before the user
> kicked out) was destroyed.
>
> The access logging shows that the client simply stopped providing the
> session cookie to JBoss.
>
> We've already contacted RedHat support regarding this and they told us:
> "Since the container isn't expiring or removing the session here and it 
is
> only seen on IE, it looks like it is an unfortunate IE bug dropping the
> session."
>
> Is there anyone else who noticed the same behavior when working with 
IE11?
>
> Because we've added DeltaSpike to the project and we don't facing this
> issue before, maybe DeltaSpike causing the problems in IE11. So maybe 
you
> have any idea how we can solve the issue?
>
> Thank you very much in advance.
>
> Regards,
> Marco

Re: session cookie dropped by internet explorer 11

[Thomas Andraschko <an...@gmail.com>]

Hi,

we do some cookie dropping in the windowhandling but this should only
affect the cookies for the windowhandling:
https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L248
https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/resources/META-INF/resources/deltaspike/windowhandler.js#L309
https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/java/org/apache/deltaspike/jsf/impl/component/window/WindowIdHtmlRenderer.java#L97

Could you try to disable the whole window handling and check if it still
occurs?
You can do that via:

@Specializespublic class MyJsfModuleConfig extends JsfModuleConfig
{
    @Override
    public ClientWindowConfig.ClientWindowRenderMode getDefaultWindowMode()
    {
        return ClientWindowConfig.ClientWindowRenderMode.NONE;
    }
}

Also make sure that you DON'T add the ds:windowId component to your
views for this test.

If the problem still occurs, i have no idea sorry.

Regards,

Thomas






2015-09-23 9:23 GMT+02:00 <bu...@dakosy.de>:

> Hi all,
>
> I'm not sure if you can help me in this case, but you are my last chance
> after contacting RedHat support and using stackoverflow.
>
> In one of our projects we've migrated a web application to JSF 2.1,
> RichFaces 4.5.9.Final and JBoss EAP 6.3. And we've also added DeltaSpike
> 1.4.1 to that project.
>
> After that, we are facing some problems with session cookies in Internet
> Explorer 11. I found information that IE11 has problems with session
> cookies, but it seems that this problems are not in general, because I
> only found few information regarding this.
>
> The problem is, when a user is working with Internet Explorer 11,
> sometimes the user will be kicked out randomly before the session expiry
> time exceeds.
>
> For example a user kicked out after around one hour while the user was
> active during that time. The log file contains no exceptions or any other
> information that are in conjunction with it. Only our registrated
> SessionListener logged out that a new session was created. After five
> hours (we've set the session-timeout value to "300" (5h) in web.xml) the
> SessionListener also logged out the the first session (before the user
> kicked out) was destroyed.
>
> The access logging shows that the client simply stopped providing the
> session cookie to JBoss.
>
> We've already contacted RedHat support regarding this and they told us:
> "Since the container isn't expiring or removing the session here and it is
> only seen on IE, it looks like it is an unfortunate IE bug dropping the
> session."
>
> Is there anyone else who noticed the same behavior when working with IE11?
>
> Because we've added DeltaSpike to the project and we don't facing this
> issue before, maybe DeltaSpike causing the problems in IE11. So maybe you
> have any idea how we can solve the issue?
>
> Thank you very much in advance.
>
> Regards,
> Marco