Re: [Lift] cookie vs url sessionId precedence

[Jonathan Hoffman]

Thanks,

I experimented a bit with hijacking the session via a custom servlet Filter and 
also with a custom LiftRules.getLiftSession, but decided it was much easier to 
just add a DispatchPF.

- Jon

On Dec 31, 2009, at 3:51 PM, David Pollak wrote:

 I don't think there's a way to do this right now.  Please open a ticket for 
 it.  I think this is Marius' department and he'll likely have good ideas.
 
 If it's a high priority issue for you, please put your timeframe in the 
 ticket and post a link to the ticket in reply to this message.
 
 On Thu, Dec 31, 2009 at 12:03 PM, Jonathan Hoffman jonhoff...@gmail.com 
 wrote:
 Hi,
 
 I'm using a flash upload widget to post to a Lift mapped function 
 (/ajax_request/name/;jsessionid=x).  That works fine, but there is a 
 bug in flash on windows where it decides to send over cookies which were 
 created in IE regardless of what browser you are now using.  This causes the 
 JSESSIONID cookie to be sent to the server which is not associated with the 
 current browser's session. That cookie seems to take precedence over the 
 jsessionid in the URL which means that Lift does not find the function 
 associated with the parameter.
 
 Is there a way to tell Lift, or Jetty, that jsessionid should take 
 precedence?  or is there a way to hook in very early in the request cycle to 
 allow filtering out cookies from the request?
 
 Also, is there an easy way to wrap a url with the correct jsessionid 
 parameter.  Currently I'm doing it manually: 
 ;jsessionid=+S.containerSession.map(_.sessionId).openOr().  That sort of 
 works, but I've noticed that the url is missing .WorkerName piece of the 
 sessionId that Jetty appends to do allow load balancing to work correctly.
 
 
 Thanks,
 
 Jon
 
 --
 
 You received this message because you are subscribed to the Google Groups 
 Lift group.
 To post to this group, send email to lift...@googlegroups.com.
 To unsubscribe from this group, send email to 
 liftweb+unsubscr...@googlegroups.com.
 For more options, visit this group at 
 http://groups.google.com/group/liftweb?hl=en.
 
 
 
 
 
 -- 
 Lift, the simply functional web framework http://liftweb.net
 Beginning Scala http://www.apress.com/book/view/1430219890
 Follow me: http://twitter.com/dpp
 Surf the harmonics
 
 --
 
 You received this message because you are subscribed to the Google Groups 
 Lift group.
 To post to this group, send email to lift...@googlegroups.com.
 To unsubscribe from this group, send email to 
 liftweb+unsubscr...@googlegroups.com.
 For more options, visit this group at 
 http://groups.google.com/group/liftweb?hl=en.

--

You received this message because you are subscribed to the Google Groups 
Lift group.
To post to this group, send email to lift...@googlegroups.com.
To unsubscribe from this group, send email to 
liftweb+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/liftweb?hl=en.

Re: [Lift] cookie vs url sessionId precedence

[David Pollak]

I don't think there's a way to do this right now.  Please open a ticket for
it.  I think this is Marius' department and he'll likely have good ideas.

If it's a high priority issue for you, please put your timeframe in the
ticket and post a link to the ticket in reply to this message.

On Thu, Dec 31, 2009 at 12:03 PM, Jonathan Hoffman jonhoff...@gmail.comwrote:

 Hi,

 I'm using a flash upload widget to post to a Lift mapped function
 (/ajax_request/name/;jsessionid=x).  That works fine, but there is a
 bug in flash on windows where it decides to send over cookies which were
 created in IE regardless of what browser you are now using.  This causes the
 JSESSIONID cookie to be sent to the server which is not associated with the
 current browser's session. That cookie seems to take precedence over the
 jsessionid in the URL which means that Lift does not find the function
 associated with the parameter.

 Is there a way to tell Lift, or Jetty, that jsessionid should take
 precedence?  or is there a way to hook in very early in the request cycle to
 allow filtering out cookies from the request?

 Also, is there an easy way to wrap a url with the correct jsessionid
 parameter.  Currently I'm doing it manually:
 ;jsessionid=+S.containerSession.map(_.sessionId).openOr().  That sort of
 works, but I've noticed that the url is missing .WorkerName piece of the
 sessionId that Jetty appends to do allow load balancing to work correctly.


 Thanks,

 Jon

 --

 You received this message because you are subscribed to the Google Groups
 Lift group.
 To post to this group, send email to lift...@googlegroups.com.
 To unsubscribe from this group, send email to
 liftweb+unsubscr...@googlegroups.comliftweb%2bunsubscr...@googlegroups.com
 .
 For more options, visit this group at
 http://groups.google.com/group/liftweb?hl=en.





-- 
Lift, the simply functional web framework http://liftweb.net
Beginning Scala http://www.apress.com/book/view/1430219890
Follow me: http://twitter.com/dpp
Surf the harmonics

--

You received this message because you are subscribed to the Google Groups 
Lift group.
To post to this group, send email to lift...@googlegroups.com.
To unsubscribe from this group, send email to 
liftweb+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/liftweb?hl=en.