[JBoss-dev] [ jboss-Bugs-709559 ] Bogus http session handling(?)
Bugs item #709559, was opened at 2003-03-25 18:51 You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=709559&group_id=22866 Category: JBossWeb Group: v3.2 Status: Open Resolution: None Priority: 5 Submitted By: Heiko W.Rupp (pilhuhn) Assigned to: Nobody/Anonymous (nobody) Summary: Bogus http session handling(?) Initial Comment: browser calls the "root-url" http://localhost:8080/session-test there the welcome-file directive kicks in and uses simple.jsp this one has only one line: loginservlet looks at the session, decides if it is old or new and offers a form that after posting returns to /loginservlet On Bea WLS 6.1sp2 I see the behaviour, which I think is correct: the first call to the servlet gets a session isNew() on the session gives true: New request: session is not null, id: 2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3!920521618!-1062706052!7 001!7002!1048603266595 isNew() gives: true encUrl is loginservlet;jsessionid=2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3 !920521618!-1062706052!7001!7002 The next call sees the same session id and as expcected, isNew()==false: New request: session is not null, id: 2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3!920521618!-1062706052!7 001!7002!1048603266595 isNew() gives: false encUrl is loginservlet;jsessionid=2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3 !920521618!-1062706052!7001!7002 On JBoss 3.2.0RC4 this looks like this: First request is ok wrt. isNew()==true New request: 15:45:43,083 INFO [STDOUT] session is not null, id: dbf09fGSqkOGJLjFyKx9WQ** 15:45:43,083 INFO [STDOUT] isNew() gives: true 15:45:43,083 INFO [STDOUT] encUrl is loginservlet;jsessionid=dbf09fGSqkOGJLjFyKx9WQ** 15:46:00,248 INFO [STDOUT] Second request to url http://localhost:8080/session-test/loginservlet;jsessionid=dbf09fGSqkOGJLjFy Kx9WQ** (jsessionid is encurl from previous request, so ok.) New request: 15:46:00,248 INFO [STDOUT] session is null, creating new session 15:46:00,248 ERROR [SubscribingInterceptor] could not get AbstractReplicatedStore 15:46:00,248 INFO [STDOUT] it has id: JHIZDgbRHa9LIzJRGyElBw** 15:46:00,258 INFO [STDOUT] encUrl is loginservlet;jsessionid=JHIZDgbRHa9LIzJRGyElBw** Here the session is null, and thus a new session is created.. -- >Comment By: Heiko W.Rupp (pilhuhn) Date: 2003-03-26 16:48 Message: Logged In: YES user_id=217112 Jules Gosnell writes: - you've declared your webapp as distributed and ignored the message that Jetty gave you on startup about not being able to provide distributed session management (probably becaise you are running 'default' not 'all' - this one is also in the FAQ, I believe). No doubt you are using xdoclet to produce your web.xml - unfortunately it defaults to declaring all webapps distributable. You will need to set distributable="false" in your build.xml So, this probably should go into admin&dev manual as well as quick-start guide. -- Comment By: Heiko W.Rupp (pilhuhn) Date: 2003-03-26 10:40 Message: Logged In: YES user_id=217112 JBoss 3.0.5/tomcat-4.0.6 behaves as expected and like Bea does. So it is 2:1 against jetty here :-) -- Comment By: Heiko W.Rupp (pilhuhn) Date: 2003-03-26 10:19 Message: Logged In: YES user_id=217112 The same applies to 3.0.6/Jetty -- Comment By: Heiko W.Rupp (pilhuhn) Date: 2003-03-26 09:38 Message: Logged In: YES user_id=217112 This is with JBoss 3.20RC4/Jetty -- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=709559&group_id=22866 --- This SF.net email is sponsored by: The Definitive IT and Networking Event. Be There! NetWorld+Interop Las Vegas 2003 -- Register today! http://ads.sourceforge.net/cgi-bin/redirect.pl?keyn0001en ___ Jboss-development mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-development
[JBoss-dev] [ jboss-Bugs-709559 ] Bogus http session handling(?)
Bugs item #709559, was opened at 2003-03-25 18:51 You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=709559&group_id=22866 Category: JBossWeb Group: v3.2 Status: Open Resolution: None Priority: 5 Submitted By: Heiko W.Rupp (pilhuhn) Assigned to: Nobody/Anonymous (nobody) Summary: Bogus http session handling(?) Initial Comment: browser calls the "root-url" http://localhost:8080/session-test there the welcome-file directive kicks in and uses simple.jsp this one has only one line: loginservlet looks at the session, decides if it is old or new and offers a form that after posting returns to /loginservlet On Bea WLS 6.1sp2 I see the behaviour, which I think is correct: the first call to the servlet gets a session isNew() on the session gives true: New request: session is not null, id: 2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3!920521618!-1062706052!7 001!7002!1048603266595 isNew() gives: true encUrl is loginservlet;jsessionid=2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3 !920521618!-1062706052!7001!7002 The next call sees the same session id and as expcected, isNew()==false: New request: session is not null, id: 2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3!920521618!-1062706052!7 001!7002!1048603266595 isNew() gives: false encUrl is loginservlet;jsessionid=2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3 !920521618!-1062706052!7001!7002 On JBoss 3.2.0RC4 this looks like this: First request is ok wrt. isNew()==true New request: 15:45:43,083 INFO [STDOUT] session is not null, id: dbf09fGSqkOGJLjFyKx9WQ** 15:45:43,083 INFO [STDOUT] isNew() gives: true 15:45:43,083 INFO [STDOUT] encUrl is loginservlet;jsessionid=dbf09fGSqkOGJLjFyKx9WQ** 15:46:00,248 INFO [STDOUT] Second request to url http://localhost:8080/session-test/loginservlet;jsessionid=dbf09fGSqkOGJLjFy Kx9WQ** (jsessionid is encurl from previous request, so ok.) New request: 15:46:00,248 INFO [STDOUT] session is null, creating new session 15:46:00,248 ERROR [SubscribingInterceptor] could not get AbstractReplicatedStore 15:46:00,248 INFO [STDOUT] it has id: JHIZDgbRHa9LIzJRGyElBw** 15:46:00,258 INFO [STDOUT] encUrl is loginservlet;jsessionid=JHIZDgbRHa9LIzJRGyElBw** Here the session is null, and thus a new session is created.. -- >Comment By: Heiko W.Rupp (pilhuhn) Date: 2003-03-26 10:40 Message: Logged In: YES user_id=217112 JBoss 3.0.5/tomcat-4.0.6 behaves as expected and like Bea does. So it is 2:1 against jetty here :-) -- Comment By: Heiko W.Rupp (pilhuhn) Date: 2003-03-26 10:19 Message: Logged In: YES user_id=217112 The same applies to 3.0.6/Jetty -- Comment By: Heiko W.Rupp (pilhuhn) Date: 2003-03-26 09:38 Message: Logged In: YES user_id=217112 This is with JBoss 3.20RC4/Jetty -- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=709559&group_id=22866 --- This SF.net email is sponsored by: The Definitive IT and Networking Event. Be There! NetWorld+Interop Las Vegas 2003 -- Register today! http://ads.sourceforge.net/cgi-bin/redirect.pl?keyn0001en ___ Jboss-development mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-development
[JBoss-dev] [ jboss-Bugs-709559 ] Bogus http session handling(?)
Bugs item #709559, was opened at 2003-03-25 18:51 You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=709559&group_id=22866 Category: JBossWeb Group: v3.2 Status: Open Resolution: None Priority: 5 Submitted By: Heiko W.Rupp (pilhuhn) Assigned to: Nobody/Anonymous (nobody) Summary: Bogus http session handling(?) Initial Comment: browser calls the "root-url" http://localhost:8080/session-test there the welcome-file directive kicks in and uses simple.jsp this one has only one line: loginservlet looks at the session, decides if it is old or new and offers a form that after posting returns to /loginservlet On Bea WLS 6.1sp2 I see the behaviour, which I think is correct: the first call to the servlet gets a session isNew() on the session gives true: New request: session is not null, id: 2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3!920521618!-1062706052!7 001!7002!1048603266595 isNew() gives: true encUrl is loginservlet;jsessionid=2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3 !920521618!-1062706052!7001!7002 The next call sees the same session id and as expcected, isNew()==false: New request: session is not null, id: 2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3!920521618!-1062706052!7 001!7002!1048603266595 isNew() gives: false encUrl is loginservlet;jsessionid=2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3 !920521618!-1062706052!7001!7002 On JBoss 3.2.0RC4 this looks like this: First request is ok wrt. isNew()==true New request: 15:45:43,083 INFO [STDOUT] session is not null, id: dbf09fGSqkOGJLjFyKx9WQ** 15:45:43,083 INFO [STDOUT] isNew() gives: true 15:45:43,083 INFO [STDOUT] encUrl is loginservlet;jsessionid=dbf09fGSqkOGJLjFyKx9WQ** 15:46:00,248 INFO [STDOUT] Second request to url http://localhost:8080/session-test/loginservlet;jsessionid=dbf09fGSqkOGJLjFy Kx9WQ** (jsessionid is encurl from previous request, so ok.) New request: 15:46:00,248 INFO [STDOUT] session is null, creating new session 15:46:00,248 ERROR [SubscribingInterceptor] could not get AbstractReplicatedStore 15:46:00,248 INFO [STDOUT] it has id: JHIZDgbRHa9LIzJRGyElBw** 15:46:00,258 INFO [STDOUT] encUrl is loginservlet;jsessionid=JHIZDgbRHa9LIzJRGyElBw** Here the session is null, and thus a new session is created.. -- >Comment By: Heiko W.Rupp (pilhuhn) Date: 2003-03-26 10:19 Message: Logged In: YES user_id=217112 The same applies to 3.0.6/Jetty -- Comment By: Heiko W.Rupp (pilhuhn) Date: 2003-03-26 09:38 Message: Logged In: YES user_id=217112 This is with JBoss 3.20RC4/Jetty -- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=709559&group_id=22866 --- This SF.net email is sponsored by: The Definitive IT and Networking Event. Be There! NetWorld+Interop Las Vegas 2003 -- Register today! http://ads.sourceforge.net/cgi-bin/redirect.pl?keyn0001en ___ Jboss-development mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-development
[JBoss-dev] [ jboss-Bugs-709559 ] Bogus http session handling(?)
Bugs item #709559, was opened at 2003-03-25 18:51 You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=709559&group_id=22866 Category: JBossWeb Group: v3.2 Status: Open Resolution: None Priority: 5 Submitted By: Heiko W.Rupp (pilhuhn) Assigned to: Nobody/Anonymous (nobody) Summary: Bogus http session handling(?) Initial Comment: browser calls the "root-url" http://localhost:8080/session-test there the welcome-file directive kicks in and uses simple.jsp this one has only one line: loginservlet looks at the session, decides if it is old or new and offers a form that after posting returns to /loginservlet On Bea WLS 6.1sp2 I see the behaviour, which I think is correct: the first call to the servlet gets a session isNew() on the session gives true: New request: session is not null, id: 2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3!920521618!-1062706052!7 001!7002!1048603266595 isNew() gives: true encUrl is loginservlet;jsessionid=2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3 !920521618!-1062706052!7001!7002 The next call sees the same session id and as expcected, isNew()==false: New request: session is not null, id: 2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3!920521618!-1062706052!7 001!7002!1048603266595 isNew() gives: false encUrl is loginservlet;jsessionid=2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3 !920521618!-1062706052!7001!7002 On JBoss 3.2.0RC4 this looks like this: First request is ok wrt. isNew()==true New request: 15:45:43,083 INFO [STDOUT] session is not null, id: dbf09fGSqkOGJLjFyKx9WQ** 15:45:43,083 INFO [STDOUT] isNew() gives: true 15:45:43,083 INFO [STDOUT] encUrl is loginservlet;jsessionid=dbf09fGSqkOGJLjFyKx9WQ** 15:46:00,248 INFO [STDOUT] Second request to url http://localhost:8080/session-test/loginservlet;jsessionid=dbf09fGSqkOGJLjFy Kx9WQ** (jsessionid is encurl from previous request, so ok.) New request: 15:46:00,248 INFO [STDOUT] session is null, creating new session 15:46:00,248 ERROR [SubscribingInterceptor] could not get AbstractReplicatedStore 15:46:00,248 INFO [STDOUT] it has id: JHIZDgbRHa9LIzJRGyElBw** 15:46:00,258 INFO [STDOUT] encUrl is loginservlet;jsessionid=JHIZDgbRHa9LIzJRGyElBw** Here the session is null, and thus a new session is created.. -- >Comment By: Heiko W.Rupp (pilhuhn) Date: 2003-03-26 09:38 Message: Logged In: YES user_id=217112 This is with JBoss 3.20RC4/Jetty -- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=709559&group_id=22866 --- This SF.net email is sponsored by: The Definitive IT and Networking Event. Be There! NetWorld+Interop Las Vegas 2003 -- Register today! http://ads.sourceforge.net/cgi-bin/redirect.pl?keyn0001en ___ Jboss-development mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-development
[JBoss-dev] [ jboss-Bugs-709559 ] Bogus http session handling(?)
Bugs item #709559, was opened at 2003-03-25 18:51 You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=709559&group_id=22866 Category: JBossWeb Group: v3.2 Status: Open Resolution: None Priority: 5 Submitted By: Heiko W.Rupp (pilhuhn) Assigned to: Nobody/Anonymous (nobody) Summary: Bogus http session handling(?) Initial Comment: browser calls the "root-url" http://localhost:8080/session-test there the welcome-file directive kicks in and uses simple.jsp this one has only one line: loginservlet looks at the session, decides if it is old or new and offers a form that after posting returns to /loginservlet On Bea WLS 6.1sp2 I see the behaviour, which I think is correct: the first call to the servlet gets a session isNew() on the session gives true: New request: session is not null, id: 2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3!920521618!-1062706052!7 001!7002!1048603266595 isNew() gives: true encUrl is loginservlet;jsessionid=2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3 !920521618!-1062706052!7001!7002 The next call sees the same session id and as expcected, isNew()==false: New request: session is not null, id: 2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3!920521618!-1062706052!7 001!7002!1048603266595 isNew() gives: false encUrl is loginservlet;jsessionid=2AqCdn2Gn8UKNSbtNwgxDIJkSO7mFUE3CWxpsQe4UOk5dsbZqzt3 !920521618!-1062706052!7001!7002 On JBoss 3.2.0RC4 this looks like this: First request is ok wrt. isNew()==true New request: 15:45:43,083 INFO [STDOUT] session is not null, id: dbf09fGSqkOGJLjFyKx9WQ** 15:45:43,083 INFO [STDOUT] isNew() gives: true 15:45:43,083 INFO [STDOUT] encUrl is loginservlet;jsessionid=dbf09fGSqkOGJLjFyKx9WQ** 15:46:00,248 INFO [STDOUT] Second request to url http://localhost:8080/session-test/loginservlet;jsessionid=dbf09fGSqkOGJLjFy Kx9WQ** (jsessionid is encurl from previous request, so ok.) New request: 15:46:00,248 INFO [STDOUT] session is null, creating new session 15:46:00,248 ERROR [SubscribingInterceptor] could not get AbstractReplicatedStore 15:46:00,248 INFO [STDOUT] it has id: JHIZDgbRHa9LIzJRGyElBw** 15:46:00,258 INFO [STDOUT] encUrl is loginservlet;jsessionid=JHIZDgbRHa9LIzJRGyElBw** Here the session is null, and thus a new session is created.. -- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=709559&group_id=22866 --- This SF.net email is sponsored by: The Definitive IT and Networking Event. Be There! NetWorld+Interop Las Vegas 2003 -- Register today! http://ads.sourceforge.net/cgi-bin/redirect.pl?keyn0001en ___ Jboss-development mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-development
