DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=10254>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=10254 [PATCH] MaybeUploadRequestFactoryImpl Session timeout fix Summary: [PATCH] MaybeUploadRequestFactoryImpl Session timeout fix Product: Cocoon 2 Version: 2.0.3 Platform: All OS/Version: All Status: NEW Severity: Enhancement Priority: Other Component: general components AssignedTo: [EMAIL PROTECTED] ReportedBy: [EMAIL PROTECTED] Currently it is possible for a large upload to take long enough for the user's session to be logged off between initiating the upload and the upload completing. Under a session based access control system this results in the submission being rejected. Whilst it is possible to increase the time before a session is forgotten by altering the web.xml configuration, this change will affect all users at all times, and may compromise security policies. This patch alters the MaybeUploadRequestFactory implementation to record the current users session timeout and then over-ride this with a four hour timeout at the beginning of the upload, restoring it to its original setting with the upload has completed. The requirement for this may be servlet container specific and there may be a strong argument for this functionality to be built into the container as standard, it currently appears to be necessary when working with Tomcat. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, email: [EMAIL PROTECTED]
