On 01/12/2019 23:04, Mark Thomas wrote:
<snip/>
I'm with you. And likely our setup is special in a way. However, I've
rarely seen that you have to re-enter credentials in a professional web
application like Google or Facebook, for example.
Yes. But if those apps were running on Tomcat I doubt that a) they'd be
running on a single instance and b) they'd be using Tomcat's in memory
session management.
Yes, my comparison was not really fair. Just wanted to point out, that
re-entering credentials is no longer common in today's applications.
As an option, disabled by default I don't see why not.
<snap/>
Agreed.
A good place to start would be to open a Bugzilla enhancement request
against 9.0.x (we always develop for the latest version first and then
back-port).
Makes sense.
After that, we accept patches in Bugzilla or Pull Requests at GitHub.
Expect a fair amount a feedback on your first version (my first patch
needed to be completely re-written) but a couple of tips to reduce the
rework:
- enable checkstyle and make sure there are no errors when building
- generally, follow the style of the code you are editing (the Tomcat
code style is not always consistent)
So, I will give that a try. Hope to come up with a patch within the next
couple of weeks. The patch itself seems not to be too challenging.
Thanks for your advice and tips.
Carsten
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org