Hi I'm running into some strange behavior with sessions when running under https. I notice that when I set my browser to prompt me when a cookie is to be set and hit my application with regular http, I get a prompt for the session cookie. If I hit the same page running a secure connection I'm never prompted. I notice that under the secure connection some of my URLs get rewritten. Interesting enough the second page I hit under the secure connection does not have the session in the URL and still works, but after the second page all other pages attach the jsession onto the url. Can someone please explain what's going on. Does the setting of the session cookie not work under secure connections? Thanks Sergio __________________________________________________ Do You Yahoo!? Yahoo! Auctions - Buy the things you want at great prices. http://auctions.yahoo.com/
