In most cases, redirecting to a different application on the same server also leads to loss of session data, since the two applications don't share session state (they do share the same session ID, but not the same state).
But I can't come up with a reason why it only happens in Safari... Regards, Jan-Kees 2009/8/27 Werner Punz <[email protected]>: > You could issue a navigation via the navigation handler. > But generally I dont thin you should loose the session on a redirect. > This is standard servlet stuff. > Do you change domains in between or do you change from https to http? > > > Werner > > > Georg Füchsle schrieb: >> >> Hallo! >> >> >> For starting my application the User asks for a special start-url. >> During the render-phase at a request for this start-url in a certain >> case I recognize that the user wants a anonymous logon. In this case I >> set value of a session bean 'mbUser.name=anonymous' and forward the >> user to another URL. >> >> Generally in my application I accept a request, if the sessionscoped >> value 'mbUser.name' is set. (So I know that the user had logged on >> sucessfully.) >> >> This works very well since some months. >> >> But now when I do so with a safari-browser after the redirect the >> session scoped value mbUser.name is lost and the application will deny >> an access. >> A customer told me he has the same effect with Internet Explorer >> Version 8, but I can only reproduce this problem with safari. >> >> >> There is another logon mechanism to this application that works >> without redirect. In this way the session scoped values are not lost >> and the application can be used. >> >> >> So the problem is: >> >> The value of a sessionscoped Bean is lost after redirecting the reqest >> (only) when using a Safari browser. >> For redirecting I call: >> ...getFacesContext().getExternalContext().redirect(newUrl); >> >> >> >> Can anybody give me a hint? >> >> Thanks Georg >> > >
