search

silb / dropwizard-shiro

A bundle for securing DropWizard with Apache Shiro.
Apache License 2.0
56 stars 11 forks source link

Can't disable sessionIdUrlRewriting #11

Closed richmidwinter closed 7 years ago

richmidwinter commented 7 years ago

I couldn't stop shiro putting the JSESSIONID value into the URL. There's a simple line of config to correct this behaviour:

sessionManager.sessionIdUrlRewritingEnabled = false

But it doesn't work unless you update the version of shiro. See https://github.com/silb/dropwizard-shiro/pull/10

silb commented 7 years ago

You can simply update the version in the direct dependency to Shiro from your project.