Hi Amit,
On Wed, Jan 6, 2021 at 11:15 AM Amit Khosla
wrote:
> Hi,
>
> Thanks for the reply.
>
> We tried the settings on multiple machines. And found that the same
> configuration machines gave different results.
> We are getting multiple jsessionid cookies being created. In our
> application, w
Hi,
Thanks for the reply.
We tried the settings on multiple machines. And found that the same
configuration machines gave different results.
We are getting multiple jsessionid cookies being created. In our
application, we have a multi tenant application.
For each tenant we have an nginx running c
Mark,
On 1/4/21 03:17, Mark Thomas wrote:
On 04/01/2021 06:02, Amit Khosla wrote:
Hi,
We are still facing this issue. Can someone please help us?
In a clean 8.5.x install, session cookies are only marked as secure if
the request that triggered the session creation is made over a secure
chann
On 04/01/2021 06:02, Amit Khosla wrote:
> Hi,
>
> We are still facing this issue. Can someone please help us?
In a clean 8.5.x install, session cookies are only marked as secure if
the request that triggered the session creation is made over a secure
channel (typically HTTPS).
If you amend the s
Hi,
We are still facing this issue. Can someone please help us?
Thanks & Regards
Amit
On Fri, Jan 1, 2021 at 8:22 PM Amit Khosla
wrote:
> Thanks for reply!
>
> We did changes in /conf/web.xml.
> But when the changes did not reflect, we made changes in specific app as
> well. But we could not s
Thanks for reply!
We did changes in /conf/web.xml.
But when the changes did not reflect, we made changes in specific app as
well. But we could not see the cookie as secure.
We verified by the response headers seen in chrome developer tool. The
cookie JSESSIONID does not have a secure flag.
By th
Did you make the changes to /conf/web.xml ? It seems you may
have made them just to that specific our_app application
Are you sure you are testing it correctly?
Can you try https://gf.dev/http-headers-test
On 31/12/20, 8:29 pm, "Amit Khosla" wrote:
Thanks for reply,
we did restarte
Thanks for reply,
we did restarted server while trying. The issue is still there even after
restart.
On Thu, Dec 31, 2020 at 11:14 AM Darryl Lewis
wrote:
>
>
> true
> true
>
>
>
> Restart the server.
>
> On 31/12/20, 3:50 pm, "Amit Khosla" wrote:
>
> Hi Team,
>
true
true
Restart the server.
On 31/12/20, 3:50 pm, "Amit Khosla" wrote:
Hi Team,
As we are looking forward for JSESSIONID to be secure.
We made changes in web.xml in tomcat/conf
true
true
Hi Team,
As we are looking forward for JSESSIONID to be secure.
We made changes in web.xml in tomcat/conf
true
true
But even after the changes, we are not able to get the JSESSIONID cookie as
secure.
We also tried changes in web.xml of our appl
10 matches
Mail list logo
