Is this in CAS or in the secured application? On Tue, Oct 16, 2012 at 4:19 PM, Jesse Farinacci <[email protected]> wrote: > Greetings, > > On Mon, Oct 15, 2012 at 5:24 PM, Jamie Johnson <[email protected]> wrote: >> I have a service secured behind CAS which works properly but I'd like >> to remove the jsessionid from the URL, is this possible? > > Why not just add to your web.xml: > > <session-config> > <cookie-config> > <http-only>true</http-only> > <secure>true</secure> > </cookie-config> > </session-config> > > -Jesse > > -- > There are 10 types of people in this world, those > that can read binary and those that can not. > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user
-- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
