On 8/19/2010 7:19 AM, Terrell Weatherford wrote:
> When setting cookie-max-age in an app's session-config, should we be seeing
> the expiry date for the session cookie in the browser update when the
> browser sends a request and receives a new response from the server or is
> what is described above the expected behavior?

The latter.

"Max-Age=delta-seconds" means: "After delta-seconds seconds elapse, the 
client should discard the cookie."

See http://www.ietf.org/rfc/rfc2109.txt.



resin-interest mailing list

Reply via email to