markt 2004/08/13 13:19:51
Modified: catalina/src/share/org/apache/catalina/authenticator
SingleSignOn.java
Log:
Fix bug 29956. Incorrect handling of negative timeout in SingleSignOn.sessionEvent()
- Patch provided by Brian Stansberry
Revision Changes Path
1.16 +4 -3
jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/authenticator/SingleSignOn.java
Index: SingleSignOn.java
===================================================================
RCS file:
/home/cvs/jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/authenticator/SingleSignOn.java,v
retrieving revision 1.15
retrieving revision 1.16
diff -u -r1.15 -r1.16
--- SingleSignOn.java 23 Jun 2004 13:51:36 -0000 1.15
+++ SingleSignOn.java 13 Aug 2004 20:19:50 -0000 1.16
@@ -294,8 +294,9 @@
// If so, we'll just remove the expired session from the
// SSO. If the session was logged out, we'll log out
// of all session associated with the SSO.
- if (System.currentTimeMillis() - session.getLastAccessedTime() >=
- session.getMaxInactiveInterval() * 1000) {
+ if ((session.getMaxInactiveInterval() > 0)
+ && (System.currentTimeMillis() - session.getLastAccessedTime() >=
+ session.getMaxInactiveInterval() * 1000)) {
removeSession(ssoId, session);
} else {
// The session was logged out.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
