Spent sometime in the debugger and it is Shiro that is appending the JSESSIONID
on a redirect if the session cookie hasn't been set yet.
So, now I'm off to figure out how to turn it off in Shiro.
Thanks again for your help!
Sincerely,
Stephen McCants
On Wed, 19 Nov 2014 01:5
Hello Konstantin Kolinko,
Thank you for the useful debugging tips. By setting the server in Strict
Compliance, I found some problems with our TLD declarations. After fixing
that, isELIgnored has the default of true, as expected.
Thanks again!
Sincerely,
Stephen McCants
On Sat, 8 Nov 2014 17
would be appreciated.
Sincerely,
Stephen McCants
On Tue, 18 Nov 2014 03:17:27 +0300
Konstantin Kolinko wrote:
> 2014-11-18 2:49 GMT+03:00 Stephen McCants :
> > Hello,
> >
> > I'm trying to remove the JSESSIONID from my URL the first time someone hits
> > my Tomcat W
Hello Christopher Schultz,
Sorry for the delayed reply.
> On 11/7/14 2:51 PM, Stephen McCants wrote:
> > I'm seeing a strange problem where isELIgnored has the wrong
> > default value for a new Tomcat install of 5.0.56.
>
> That version number is certainly wrong
ystem and would rather not have the complication of Apache
present. Some of the software running tests is getting confused by
the JSESSIONID on the URL the first time it hits our login page, so it doesn't
recognize the login page.
Thoughts as to where I might have gone wrong?
Thanks
ere should I be looking in the configurations for a difference? What
differences would come into play?
BTW, other people apparently have run into this problem:
See answer and comments on
http://stackoverflow.com/questions/793983/jsp-el-expression-is-not-evaluated .
Thanks in advance.
Sincerely,
Stephen
