svn commit: r1816745 - /portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml

Thu, 30 Nov 2017 11:08:15 -0800 

Author: taylor
Date: Thu Nov 30 19:07:58 2017
New Revision: 1816745

URL: http://svn.apache.org/viewvc?rev=1816745&view=rev
Log:
JS2-1359: example of using changeSessionIdOnAuthentication feature in Tomcat. 
Set to true here, which is default, and is the secure, recommended setting by 
Tomcat. If your portal requires the 'old' Jetspeed behavior of retaining the 
session id on login, then set this setting to false

Modified:
    
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml

Modified: 
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml
URL: 
http://svn.apache.org/viewvc/portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml?rev=1816745&r1=1816744&r2=1816745&view=diff
==============================================================================
--- 
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml
 (original)
+++ 
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/tomcat/context.xml
 Thu Nov 30 19:07:58 2017
@@ -29,8 +29,8 @@ limitations under the License.
             factory="org.apache.commons.dbcp.BasicDataSourceFactory"
            type="javax.sql.DataSource" 
username="${org.apache.jetspeed.production.database.user}" 
password="${org.apache.jetspeed.production.database.password}"
            driverClassName="${org.apache.jetspeed.production.database.driver}" 
url="${org.apache.jetspeed.production.database.url}"
-            maxActive="100" maxIdle="30" maxWait="10000"/> 
+            maxActive="100" maxIdle="30" maxWait="10000" />
 
-       <Valve className="org.apache.catalina.authenticator.FormAuthenticator" 
characterEncoding="UTF-8"/>
+       <Valve className="org.apache.catalina.authenticator.FormAuthenticator" 
characterEncoding="UTF-8" changeSessionIdOnAuthentication="true" />
 
 </Context>



---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-dev-unsubscr...@portals.apache.org
For additional commands, e-mail: jetspeed-dev-h...@portals.apache.org

Reply via email to