This is normal servlet engine behavior. Your HTTP and HTTPS are two separate
sessions. Orion has a way to configure the default website to share sessions
across HTTP and HTTPS websites.
In the default-web-site.xml be sure to have this line:
<!-- The default web-app for this site, bound to the root -->
<default-web-app application="default" name="defaultWebApp"
shared="true" />
You also need it in the SSL website xml config file.
If you search the email archives you'll see this problem has been discussed.
Good luck
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Robert S.
Sfeir
Sent: Tuesday, May 08, 2001 1:20 PM
To: Orion-Interest
Subject: BIG Problem with SSL
When I setup SSL under Orion and I hit:
http://www.domain.com
then hit
https://www.domain.com
they both come up fine, but it looks like Orion is starting a new session!!!
This is bad because if someone is logged in under https, it doesn't look
like they're logged in when they're under the http server.
Am I missing a setting with SSL or is this normal Orion behavior?
Thanks for any prompt response you might have.
R
