Denis Magda created IGNITE-2344:
-----------------------------------
Summary: WebSessionFilter doesn't support session ID renewal
Key: IGNITE-2344
URL: https://issues.apache.org/jira/browse/IGNITE-2344
Project: Ignite
Issue Type: Bug
Components: general
Affects Versions: ignite-1.4
Reporter: Denis Magda
It's quite a common scenario to update a session ID after a user successfully
logged in preserving the session content for further usage.
Ignite's {{WebSessionFilter}} doesn't support such a use case creating a
session from scratch.
To support this behavior we can store a special Cookie that will hold latest
session ID. When a session is passed to {{WebSessionFilter}} and the filter
detects that this is a fresh session it will check the Cookie in advance. If
the Cookie exists and holds an old session ID then the filter will be able to
get a session content from the cache using the old ID and put it back using the
new ID.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
