Closed GoogleCodeExporter closed 9 years ago
Change title as it's not yet clear what really should be done.
Original comment by martin.grotzke
on 24 Feb 2010 at 3:26
If the empty session path property is set on the connector,
o.a.catalina.connector.Request.doGetSession attempts to reuse session id if one
was
submitted in a cookie (but not if the session id if it is from a URL, to
prevent
possible phishing attacks).
Original comment by martin.grotzke
on 20 Mar 2010 at 9:18
Fixed. Before reusing the provided session id it's checked, if the id contains
a
memcached node and if this node is available.
Original comment by martin.grotzke
on 20 Mar 2010 at 9:25
Original issue reported on code.google.com by
martin.grotzke
on 24 Feb 2010 at 3:25