https://issues.apache.org/bugzilla/show_bug.cgi?id=56339
Bug ID: 56339
Summary: session listener invalidate session
Product: Tomcat 7
Version: 7.0.47
Hardware: PC
OS: Linux
Status: NEW
Severity: blocker
Priority: P2
Component: Servlet & JSP API
Assignee: [email protected]
Reporter: [email protected]
we have sessionlistener
in sessionDestroyed method we call session.invalidate()
in version 7.0.42 its ok but newer versions loops code
public void sessionDestroyed(HttpSessionEvent arg0) {
if(arg0 !=null && arg0.getSession() !=null)
{
HttpSession session = arg0.getSession();
String sessionId = session.getId();
if(sessionId != null)
{
UserPrincipal userPrincipal =
(UserPrincipal)session.getAttribute(ContextVar.USERPRINCIPLE);
if (userPrincipal != null)
{
UserOpBLO userOpBLO = new UserOpBLO(new ResourcePool());
userOpBLO.processLogoutActivity(sessionId,
userPrincipal.getUserId());
CurrentSessions.SESSIONS.remove(sessionId);
session.invalidate();
}
}
}
}
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
