The current implementation will fail if there are two JSESSIONID cookies at different domain levels. My patch below checks a JSESSIONID value for a known jvmroute before it returns a session cookie.
The logic isn't perfect but it better than the current implementation IMO. It could be made "more correct" if it verified the found jvmroute was at the end of the cookie's value instead of simply doing a strstr() for it. One could also argue that this changes the behavior enough that the function should be renamed as it's no longer a generic get_cookie function.
That said, the current patch, altered for mod_jk 1.2.5, is currently in production for webmail.ufl.edu where it's getting 15+ requests a second.
Sandy McArthur
jk_lb_worker.c-check-jvmroute.patch
Description: Binary data
Description: S/MIME cryptographic signature
