Hi Leonard, It seems to me the response object is used before you create a session. So some things to check are: - Where in the request handling is your security filter located? - When is the session accessed? After the call to doFilter()?
To prevent this exception, ensure the session is created & added to the response before anything is written to the response. Preferably in the first filter, before the call to doFilter(). This way the cookie header with the JSESSIONID cookie is added before the response is written to, as writing to the response commits the response. Oscar -- ,-_ /() ) Oscar Westra van holthe - Kind http://www.xs4all.nl/~kindop/ (__ ( =/ () QED - Quite Easily Done ------------------------------------------------------------------------------ _______________________________________________ Stripes-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/stripes-users
