https://stackoverflow.com/questions/59833043/tomcat-logs-user-out-during-session-failover-event-and-restarts
We've implemented session replication using Redisson, but we noticed that if we intentionally fail a node, the user's sessions do get replicated, but they're logged out when they're restored on the new server. Is there a way to make this work properly so the user doesn't get logged out during a failover event? Most /More importantly, is there a technical or security reason for this? If you look at the Tomcat code, they actively try and avoid serialization the Security Principal: https://github.com/apache/tomcat/blob/master/java/org/apache/catalina/session/StandardSession.java#L1559 https://github.com/apache/tomcat/blob/master/java/org/apache/catalina/session/StandardSession.java#L234 -- Sent from: http://tomcat.10.x6.nabble.com/Tomcat-User-f1968778.html --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
