Bugs item #1099355, was opened at 2005-01-10 10:14 Message generated for change (Tracker Item Submitted) made by Item Submitter You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=1099355&group_id=22866
Category: JBossServer Group: v3.2 Status: Open Resolution: None Priority: 5 Submitted By: mona_onsy (mona_onsy) Assigned to: Nobody/Anonymous (nobody) Summary: user data is shared between sessions Initial Comment: when running a web app on jboss app server using apache's tag libs, session variables are shared between different sessions of the application when the pages are refreshed. Meaning ... user A can see the data the user B entereded on page 1 if user A refreshed page 1 and user B was in page 2. which is a security violation. the same application using the same tag libs running on sun one app server doesn;t have this problem. ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=1099355&group_id=22866 ------------------------------------------------------- The SF.Net email is sponsored by: Beat the post-holiday blues Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek. It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt _______________________________________________ JBoss-Development mailing list JBoss-Development@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-development