> Set-Cookie: > CASTGC=TGT-144-6Q2bBccjqXHGdCk6W6gnuEZzed5Gto7fSDSLPgXYpDMbGP2xDb-khtrdsso01.kh.asegroup.com; > Domain=khtrdsso01.kh.asegroup.com; Path=/cas/; Secure^M > Set-Cookie: JSESSIONID=EEE2BAA00BB0C4803D90DA8DFBFAE8A7; > Domain=khtrdsso01.kh.asegroup.com; Path=/cas/; Secure^M
> <html><body onload='document.forms[0].submit()'><form > action='http://tdatwo.kh.asegroup.com/TdaJSFWeb/index.ase' > method='get'><input type='hidden' name='ticket' > value='ST-144-IhwNPrzMmzP3FClSNqiM-khtrdsso01.kh.asegroup.com'></form></body></html> > Jarno Huuskonen > Jarno, The issue is easy to target. Look at the Set-Cookie generated by the server and the URLs you're browsing or you're redirecting to. The cookie generated by the server is valid for a domain which is not the same used by your application. That's why your browser don't send the cookie to your application. Fix this issue and you're done. Both HAProxy logs (once you modified them) and tcpdump lead to the same conclusion. You could also rewrite the Set-Cookie to update the Domain parameter. Baptiste
