Thank you Tim, I'll try your suggestions. Scott --- Tim Funk <[EMAIL PROTECTED]> wrote:
> The code says (in FormAuthenticator) > if (session == null) > session = > request.getSessionInternal(false); > if (session == null) { > if (containerLog.isDebugEnabled()) > containerLog.debug > ("User took so long to log on > the session expired"); > > response.sendError(HttpServletResponse.SC_REQUEST_TIMEOUT, > > sm.getString("authenticator.sessionExpired")); > return (false); > } > > With the login form, a Session should be created. > (Not quite an HttpSession, > but pretty close to it) This Session also holds > authentication information to > send you back to the right location after login. For > some reason a session > can't be found. Why? I have no clue. It could be > that the session expired, or > it could be a session cookie is not being sent (for > any number of reasons), > or something else. > > To debug it, livehttpheaders and firefox might be > helpful. > > -Tim > > scott soward wrote: > > > I am getting this error occasionally and am unable > to > > figure out the problem. > > > > ---------------------- > > HTTP/1.1 408 The time allowed for the login > process > > has been exceeded. > > If you wish to continue you must either click back > > twice and re-click > > the link you requested or close and re-open your > > browser > > ---------------------- > > > > I would really appreciate any suggestions about > > resolving this issue. > > It only happens when a valid user/password are > used to > > login into a tomcat app. If an invalid > user/password > > are used, I get correctly redirected to an error > page. > > Thank you, > > Scott > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: > [EMAIL PROTECTED] > For additional commands, e-mail: > [EMAIL PROTECTED] > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]