CLONE -cannot selectively enable DSO sessions for a common context path accross
virtual hosts
---------------------------------------------------------------------------------------------
Key: CDV-433
URL: https://jira.terracotta.org/jira//browse/CDV-433
Project: Community Development
Issue Type: New Feature
Components: Sessions
Reporter: Tim Eck
Assignee: Product Management
The TC config one specifies the set of context paths for which to enable DSO
sessions. Using virtual hosts, it is possible for a single tomcat instance to
serve more than one application at the same context path (eg.
http://vhost1.example.com/webapp and http://vhost2.example.com/webapp). So, if
you say "webapp" in TC config, both of these contexts get DSO sessions. This
might not be what someone wants :-)
Additionally, we end up using the same underlying sessions map in this case
increasing the risk that session data might leak between the two apps.
No idea if this problem is only specific to tomcat or not (even if it is, it
means all the tomcat variants out there inherit this issue (eg. jboss,
geronimo, glassfish, etc).
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.terracotta.org/jira//secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
tc-dev mailing list
[email protected]
http://lists.terracotta.org/mailman/listinfo/tc-dev
