[
https://issues.apache.org/jira/browse/SHIRO-361?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15375619#comment-15375619
]
ASF GitHub Bot commented on SHIRO-361:
--------------------------------------
GitHub user bdemers opened a pull request:
https://github.com/apache/shiro/pull/31
SHIRO-361 Disable encoding JSESSIONID in request URL by default.
This can be turned on by setting:
`sessionManager.sessionIdUrlRewritingEnabled` to false
in the shiro.ini (or equivalent configuration)
This is a stop gap on the way to SHIRO-360
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/bdemers/shiro SHIRO-361
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/shiro/pull/31.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #31
----
commit 7f37394c6048d8c8a214eabd312721ddb51adc9b
Author: Brian Demers <[email protected]>
Date: 2016-07-13T16:21:05Z
SHIRO-361 Disable encoding JSESSIONID in request URL by default.
This can be turned on by setting:
`sessionManager.sessionIdUrlRewritingEnabled` to false
in the shiro.ini (or equivalent configuration)
This is a stop gap on the way to SHIRO-360
----
> HttpServletResponse.encodeURL: only append JSESSIONID when necessary
> --------------------------------------------------------------------
>
> Key: SHIRO-361
> URL: https://issues.apache.org/jira/browse/SHIRO-361
> Project: Shiro
> Issue Type: Improvement
> Components: Web
> Reporter: Les Hazlewood
> Fix For: 1.3.0
>
>
> The JSESSIONID only needs to be added to the URL when cookies are disabled.
> Ideally, this would be resolved via SHIRO-360.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
