tokenSession is null on redeploy app via tomcat manager
I have an issue when I redeploy my war via tomcat manager.
eg If I have an active session, ie I am using my application, then I
redeploy a new version of the war, the token helper seems to loose the
session token :
2022-08-13 07:07:18,705 WARN org.apache.struts2.util.TokenHelper
TokenHelper:validToken - Form token E9TSCAMBY5AL0Z7TA0RNKJ83KY9XK8F2
does not match the session token null.
2022-08-13 07:07:21,952 WARN org.apache.struts2.util.TokenHelper
TokenHelper:validToken - Form token FGHUJQPU552FTQ6KG8Y8CR3DPH3G1VSX
does not match the session token null.
2022-08-13 07:07:23,101 WARN org.apache.struts2.util.TokenHelper
TokenHelper:validToken - Form token PX7FL87XNZA4EK1TBC25BNU5MTBEPQV2
does not match the session token null.
2022-08-13 07:07:24,002 WARN org.apache.struts2.util.TokenHelper
TokenHelper:validToken - Form token 7SA02JFB2ASPB9P9P9J6AC0DVEWW3PSK
does not match the session token null.
2022-08-13 07:07:24,804 WARN org.apache.struts2.util.TokenHelper
TokenHelper:validToken - Form token 3S1BNJBLOXILUAJLPLL5MBUQREHVQ7G3
does not match the session token null.
2022-08-13 07:07:25,889 WARN org.apache.struts2.util.TokenHelper
TokenHelper:validToken - Form token B2QB8B97K39ZMO6APHVM2BE3DURW2EWI
does not match the session token null.
None of my crud screens work, it just returns to the input with no errors.
To fix this I have to manually logoff and on again.
I cannot work out how to reset the session token. Is this normal when
redeploying an app?
save
TokenHelper:
Map session = ActionContext.getContext().getSession();
String tokenSessionName =
buildTokenSessionAttributeName(tokenName);
String sessionToken = (String) session.get(tokenSessionName);
if (!token.equals(sessionToken)) {
if (LOG.isWarnEnabled()) {
LocalizedTextProvider localizedTextProvider =
ActionContext.getContext().getContainer().getInstance(LocalizedTextProvider.class);
LOG.warn(localizedTextProvider.findText(TokenHelper.class,
"struts.internal.invalid.token", ActionContext.getContext().getLocale(),
"Form token {0} does not match the session token {1}.", new Object[]{
token, sessionToken
}));
}
return false;
}
-
To unsubscribe, e-mail: dev-unsubscr...@struts.apache.org
For additional commands, e-mail: dev-h...@struts.apache.org
[GitHub] [struts-examples] dependabot[bot] opened a new pull request, #160: Bump hibernate-validator from 6.2.3.Final to 7.0.5.Final
dependabot[bot] opened a new pull request, #160: URL: https://github.com/apache/struts-examples/pull/160 Bumps [hibernate-validator](https://github.com/hibernate/hibernate-validator) from 6.2.3.Final to 7.0.5.Final. Changelog Sourced from https://github.com/hibernate/hibernate-validator/blob/7.0.5.Final/changelog.txt";>hibernate-validator's changelog. 7.0.5.Final (2022-08-03) ** Bug * HV-1863 hibernate-validator-annotation-processor 6.2.0.Final (Spring Boot managed) isn't Java 17 compatible ** Improvement * HV-1900 Add annotation TypeCheck to parameter checks in AnnotationProcessor ** Task * HV-1920 Upgrade Spring Expression test dependency to 5.3.22 * HV-1919 Upgrade Maven Assembly Plugin to 3.4.2 * HV-1896 Upgrade Jackson Databind test dependency to 2.13.2.2 * HV-1893 Make test suite locale independent 7.0.4.Final (2022-03-10) ** Bug * HV-1889 Fix imagesdir for documentation ** Task * HV-1892 Update Java 9 section in documentation * HV-1890 Fix Jakarta Bean Validation versions in documentation 7.0.3.Final (2022-03-02) ** Bug * HV-1884 Composing constraints order is unpredictable * HV-1878 java.sql.Date is not supported anymore ** Task * HV-1888 Rename jakarta.annotation.processing.Processor to javax.annotation.processing.Processor * HV-1886 Fix incontainer build for main * HV-1883 Upgrade to asciidoctor-maven-plugin 2.2.2 * HV-1882 Use a different JDK for running Maven than for compiling/launching tests in JDK CI jobs * HV-1880 Clean up Gemfile.lock that shouldn't be there * HV-1877 Move the release job to a separate Jenkinsfile * HV-1876 Upgrade WildFly test dependency to 26.0.1.Final * HV-1875 Upgrade Weld test dependency to 4.0.2.Final * HV-1874 Bump Log4j test dependency to 2.17.1 * HV-1873 Upgrade to forbiddenapis 3.2 * HV-1872 Test Hibernate Validator against OpenJDK 19 * HV-1871 Sign published artifacts * HV-1864 Make sure we can release with JDK 17 7.0.2.Final (2021-12-14) ... (truncated) Commits https://github.com/hibernate/hibernate-validator/commit/2afe6ad97e2907cf2821365336370b0791110315";>2afe6ad [Jenkins release job] Preparing release 7.0.5.Final https://github.com/hibernate/hibernate-validator/commit/29682c137b706a0451b819b21d32b933a90b73fe";>29682c1 [Jenkins release job] changelog.txt updated by release build 7.0.5.Final https://github.com/hibernate/hibernate-validator/commit/bad60b2ddebae4eee3d4e611a711021b3cc9c1e1";>bad60b2 [Jenkins release job] README.md updated by release build 7.0.5.Final https://github.com/hibernate/hibernate-validator/commit/79da5ddca2029aa3692bd7aee632ecaeaa8fa0e6";>79da5dd HV-1920 Upgrade Spring Expression test dependency to 5.3.22 https://github.com/hibernate/hibernate-validator/commit/18b57d6876824e75fca2c8620778199d7f39eef7";>18b57d6 HV-1919 Upgrade Maven Assembly Plugin to 3.4.2 https://github.com/hibernate/hibernate-validator/commit/101977b816c0cdff5399d86ff7883a9228ff5ea1";>101977b HV-1863 Rename all annotation processor tests to IT https://github.com/hibernate/hibernate-validator/commit/6b9994a7068d8eed35b38ee961525d40eaecdc8b";>6b9994a HV-1863 Test with Faisafe to test the MR jar https://github.com/hibernate/hibernate-validator/commit/e7514f3b5349abb01d6831f3fdeffea4c8a0f28f";>e7514f3 HV-1863 Adjust annotation processor tests https://github.com/hibernate/hibernate-validator/commit/2829f5af1d4f83237edabd0dd653d5a12f0bc056";>2829f5a HV-1863 Add the message in the diagnostic for easier error tracking https://github.com/hibernate/hibernate-validator/commit/3ee1baa431f00979764f5242b74f1a6b98af05d2";>3ee1baa HV-1900 Add annotation TypeCheck to parameter checks in AnnotationProcessor Additional commits viewable in https://github.com/hibernate/hibernate-validator/compare/6.2.3.Final...7.0.5.Final";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI
[GitHub] [struts-examples] dependabot[bot] opened a new pull request, #161: Bump maven-javadoc-plugin from 3.4.0 to 3.4.1
dependabot[bot] opened a new pull request, #161: URL: https://github.com/apache/struts-examples/pull/161 Bumps [maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) from 3.4.0 to 3.4.1. Release notes Sourced from https://github.com/apache/maven-javadoc-plugin/releases";>maven-javadoc-plugin's releases. 3.4.1 https://issues.apache.org/jira/browse/MJAVADOC-723";>[MJAVADOC-723] - Upgrade Maven Reporting API to 3.1.1/Complete with Maven Reporting Impl 3.2.0 (https://github-redirect.dependabot.com/apache/maven-javadoc-plugin/issues/158";>#158) https://github.com/pzygielo";>@pzygielo Skip Java 9-14 in reproducible test (https://github-redirect.dependabot.com/apache/maven-javadoc-plugin/issues/155";>#155) https://github.com/jorsol";>@jorsol Add Integration Test for reproducible builds (https://github-redirect.dependabot.com/apache/maven-javadoc-plugin/issues/152";>#152) https://github.com/jorsol";>@jorsol https://issues.apache.org/jira/browse/MJAVADOC-719";>[MJAVADOC-719] - Update Maven Archiver to 3.6.0 (https://github-redirect.dependabot.com/apache/maven-javadoc-plugin/issues/150";>#150) https://github.com/jorsol";>@jorsol 📦 Dependency updates Bump assertj-core from 3.21.0 to 3.23.1 (https://github-redirect.dependabot.com/apache/maven-javadoc-plugin/issues/143";>#143) https://github.com/dependabot";>@dependabot Bump spring-webmvc from 4.3.29.RELEASE to 5.2.21.RELEASE in /src/it/projects/MJAVADOC-434_fixcompile (https://github-redirect.dependabot.com/apache/maven-javadoc-plugin/issues/135";>#135) https://github.com/dependabot";>@dependabot Bump mockito-core from 4.1.0 to 4.4.0 (https://github-redirect.dependabot.com/apache/maven-javadoc-plugin/issues/133";>#133) https://github.com/dependabot";>@dependabot Commits https://github.com/apache/maven-javadoc-plugin/commit/a5db96e7e16cc432d8fdea05f460f6c3fa258ba9";>a5db96e [maven-release-plugin] prepare release maven-javadoc-plugin-3.4.1 https://github.com/apache/maven-javadoc-plugin/commit/a10f0b11e89fd65d61938186ddf16fb86ded239e";>a10f0b1 [MJAVADOC-723] Upgrade Maven Reporting API to 3.1.1/Complete with Maven Repor... https://github.com/apache/maven-javadoc-plugin/commit/c19dba2fac27b75633efe3c9f905527ba2a8d4e1";>c19dba2 Skip Java 9-14 in reproducible test https://github.com/apache/maven-javadoc-plugin/commit/26d84b264b7a010783ce9373a6f6ebc33bdb0a3b";>26d84b2 Add notimestamp for reproducible builds test https://github.com/apache/maven-javadoc-plugin/commit/92ce668896a95263944ea9235dd99ad8b5c28ab5";>92ce668 Ignore Maven Core updates https://github.com/apache/maven-javadoc-plugin/commit/bacc078f88b29dbdfc4fc8e31a86717a59c4e3b6";>bacc078 Add Integration Test for reproducible builds https://github.com/apache/maven-javadoc-plugin/commit/497f80f40308ba40a30b129f44f5d537fccbb322";>497f80f [MJAVADOC-719] - Update Maven Archiver to 3.6.0 https://github.com/apache/maven-javadoc-plugin/commit/34b501d78a00fa7a222343a7d70cdf65eea6b390";>34b501d Bump assertj-core from 3.21.0 to 3.23.1 https://github.com/apache/maven-javadoc-plugin/commit/b92897088f6fcbc5ec4f3346de591eb97a1c580f";>b928970 Bump spring-webmvc in /src/it/projects/MJAVADOC-434_fixcompile https://github.com/apache/maven-javadoc-plugin/commit/4306c9201551b7cff45f13aaeeb5e17179fdeb7f";>4306c92 Bump mockito-core from 4.1.0 to 4.4.0 Additional commits viewable in https://github.com/apache/maven-javadoc-plugin/compare/maven-javadoc-plugin-3.4.0...maven-javadoc-plugin-3.4.1";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this
[GitHub] [struts-examples] dependabot[bot] opened a new pull request, #162: Bump javax.el from 3.0.1-b11 to 3.0.1-b12
dependabot[bot] opened a new pull request, #162: URL: https://github.com/apache/struts-examples/pull/162 Bumps [javax.el](https://github.com/javaee/uel-ri) from 3.0.1-b11 to 3.0.1-b12. Commits https://github.com/javaee/uel-ri/commit/92a1f7cd18ccb1287953a45e3f48771cb8c45517";>92a1f7c [maven-release-plugin] prepare release javax.el-3.0.1-b12 https://github.com/javaee/uel-ri/commit/673aca95c86100ed7a7121bac29076b3f6b6af79";>673aca9 Merge pull request https://github-redirect.dependabot.com/javaee/uel-ri/issues/49";>#49 from jbescos/astValueFix https://github.com/javaee/uel-ri/commit/b375610889f94ca57756066703924f73c71fb4e1";>b375610 Fix NullPointerException AstValue.java(247) https://github.com/javaee/uel-ri/commit/f3b5c877da746fc5f6ee5c43d028519dd5fe3a17";>f3b5c87 [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/javaee/uel-ri/compare/javax.el-3.0.1-b11...javax.el-3.0.1-b12";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@struts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@struts.apache.org For additional commands, e-mail: dev-h...@struts.apache.org
