Hi! We are using Wicket 1.4.20 and Tomcat 7.0.21.
After form based authentication (configured in web.xml) we call wicketSession.replaceSession() in the constructor of our base page and send a redirect to our welcome page. Due to tomcat's session fixation protection the session id changes for some times. After rendering the welcome page the session id stored in wicket's session store is not equal to the JSESSIONID. Are we doing anything wrong? Any idea? Regards, Thomas --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
