[jira] [Resolved] (WICKET-4078) WebApplication.newSession() being called for almost all requests within 1 actual session

[Igor Vaynberg (Resolved) (JIRA)]

     [ 
https://issues.apache.org/jira/browse/WICKET-4078?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Igor Vaynberg resolved WICKET-4078.
-----------------------------------

    Resolution: Invalid
      Assignee: Igor Vaynberg

you cant make a request stateless unless you make all your pages stateless. a 
request such as foo?5 is relative to the user's session and only makes sense 
within that session.

on way to deal with it is to turn off jsession cookies, which will force 
session id into every url - even the one google hits.

another way is to put the ads into an iframe.

those are the only two ways that come to mind now.
                
> WebApplication.newSession() being called for almost all requests within 1 
> actual session
> ----------------------------------------------------------------------------------------
>
>                 Key: WICKET-4078
>                 URL: https://issues.apache.org/jira/browse/WICKET-4078
>             Project: Wicket
>          Issue Type: Bug
>          Components: wicket
>    Affects Versions: 1.5.0, 1.5.1
>         Environment: Wicket 1.5.1 running on jetty 7.5.1 in Ubuntu 
>            Reporter: lucius
>            Assignee: Igor Vaynberg
>            Priority: Critical
>              Labels: cookie, cookies, jsessionid, redirect, session
>         Attachments: WicketApplication.java
>
>
> IMPORTANT:  This will NOT happen if you are testing it on a local machine or 
> within the LAN.  It only happens if you are connecting through the net, 
> perhaps it requires latency to reproduce.  I'm 100% certain of it as I've 
> been consistently reproducing the same results when I switch b/t LAN and the 
> net.
> Steps to reproduce:
> 1.) create a custom session class
> 2.) in WebApplication override newSession to return your custom session class
> 3.) put a logger in the contructor of the custom session
> 4.) with a browser, navigate around the application from an external machine 
> and see the log that you put in step 3 print out indications of your custom 
> session being created every few clicks.
> This seems to be happening on the redirect where it appends the ?5 after a 
> url?  I'm not sure.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira