Hi, In article <[EMAIL PROTECTED]>, Tue, 8 Jun 2004 14:42:53 +0200, [EMAIL PROTECTED] wrote: Anton_Grimm> Do you think it is the right place to change the implementation of the Anton_Grimm> method Anton_Grimm> getSecureSessionIdCookie() Anton_Grimm> in FormAuthentication to include step3) and step4) if no cookie is found in Anton_Grimm> step 2) ?
Yes, I think so. But, we have no data yet. I'm wondering if WAS is sending Set-Cookie JSESSIONID header only for successfully authenticated user, i.e. at step (6). # if the session tracking can be started at step(4), why cannot at step(6)... Please let us know when you find a new fact. Regards, ---- Kazuhito SUGURI mailto:[EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
