Re: ssl timeout length with jsse with tomcat 5.5
Jason Pendrey [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] I want to know how to control the length of time that an ssl connection timesout and a user needs to login again. Right now its too short and I can't find anything in the server.xml ssl connector node that seems to change that. I'm using tomcat 5.5 with the latest jsse. You're correct that there currently is no way to change the SSL session timeout. It wouldn't be hard to implement, but nobody has ever cared enough to work up the patch for it :). Of course, in Tomcat there is no relation between the Servlet HttpSession and the SSL session. This would have to be caused by something in your webapp. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: ssl timeout length with jsse with tomcat 5.5
thanks for the response, I have an administration section that always needs to be logged back into after periods of no activity, I am thinking of using apache 2.0 as the front end and tomcat on the backend and using ssl on apache(i'm assuming i can control it better on apache, but i would have to look into it. Bill Barker wrote: Jason Pendrey [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] I want to know how to control the length of time that an ssl connection timesout and a user needs to login again. Right now its too short and I can't find anything in the server.xml ssl connector node that seems to change that. I'm using tomcat 5.5 with the latest jsse. You're correct that there currently is no way to change the SSL session timeout. It wouldn't be hard to implement, but nobody has ever cared enough to work up the patch for it :). Of course, in Tomcat there is no relation between the Servlet HttpSession and the SSL session. This would have to be caused by something in your webapp. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: ssl timeout length with jsse with tomcat 5.5
Jason Pendrey [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] thanks for the response, I have an administration section that always needs to be logged back into after periods of no activity, I am thinking of using apache 2.0 as the front end and tomcat on the backend and using ssl on apache(i'm assuming i can control it better on apache, but i would have to look into it. Yup. http://httpd.apache.org/docs/2.0/mod/mod_ssl.html#sslsessioncachetimeout. Bill Barker wrote: Jason Pendrey [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] I want to know how to control the length of time that an ssl connection timesout and a user needs to login again. Right now its too short and I can't find anything in the server.xml ssl connector node that seems to change that. I'm using tomcat 5.5 with the latest jsse. You're correct that there currently is no way to change the SSL session timeout. It wouldn't be hard to implement, but nobody has ever cared enough to work up the patch for it :). Of course, in Tomcat there is no relation between the Servlet HttpSession and the SSL session. This would have to be caused by something in your webapp. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
ssl timeout length with jsse with tomcat 5.5
I want to know how to control the length of time that an ssl connection timesout and a user needs to login again. Right now its too short and I can't find anything in the server.xml ssl connector node that seems to change that. I'm using tomcat 5.5 with the latest jsse. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
