Re: mod_jk and jsessionid issue

Wed, 19 Aug 2009 12:54:04 -0700 

I'll just venture another explanation :
- considering that it seems that at least 50% of the posters here who use Apache httpd in front of Tomcat, end up proxying everything to Tomcat anyway.. - considering this problem happens on the login page, which users get - presumably - when they are not logged in yet.. 


- isn't the problem then that the images in question are in a server 
area that (also) requires authentication, and since the user at that 
point is not (yet) authenticated, he doesn't get the images ?

(probably getting instead other copies of the login pages for those links)

- which would explain that when the user is authenticated and presses 
the "reload" key, then he gets the images.





Adam Gordon wrote:

He shouldn't have to set this option.  We're using the same 
configuration, load balanced apache servers and we don't have this 
configuration set.



Additionally, I think you can choose as to whether the session id is 
cookied vs appending to the request.


Unless....are you serving up static images off your apache server?

--adam

Christopher Schultz wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Lmk,

On 8/17/2009 8:40 AM, lmk wrote:

 

I have a 2 tomcat servers load balanced using apache mod_jk,  I have a

probleme with images on the login page, the image url generate is  
postfixed by  jsessionid, so, the image is not rendered, the user 
have to

use F5 button.

    



... plus, users who have cookies disabled will never be able to see 
images.



 

how to work arround  this  issue?

    


Use the "JkStripSession" directive in your Apache httpd configuration.
If you have a reasonably recent version of mod_jk, this will remove the

;jsessionid=... parameter from your URLs before httpd tries to serve 
them.


- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkqMACUACgkQ9CaO5/Lv0PDHTwCgmvACyRp8C30fK/0pZjKWLXPh
CyQAn2cbCecxLjvuFsDbwlMb55eG+1yE
=sfW+
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


  


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org





---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org























					Reply via email to