Hi, as far as i know there are no sessiondata stored in DB. All in memory / guacd. So changing the Destination tomcat server will result in an invalid session.
Also by Design, because Guacamole didn't need a db for the base function. But of course the remote connection also need a static server. Best regards, Tobias 18.03.2025 19:45:41 Anakien Skywalker <njuhaand...@gmail.com>: > Hello, > > Tobias, do I understand correctly? The issue is that Subbareddy has logged in > one guac client instance, but random requests (like /effectivePermissions) > are going to another guac client instance which does not store session data? > This would explain 403 Forbidden. Very impressive. > > вт, 18 мар. 2025 г. в 18:08, Tobias Feller | OPC <tfel...@opc.de>: >> >> Hi Subba, >> >> Am 18.03.2025 um 16:49 schrieb Anakien Skywalker: >>> 4. Used ALB to login to Guacamole UI but got into the above error. >> >> One Hint about this setup: >> >> It is important that you once you have logged in always get to the same >> server via an sticky cookie created by the loadbalancer. >> >> >> >> I have setup an very similar environment. I have changed the >> guacamole-styleshet so that i see on which server i am. >> >> My setup: Traefik vs. Nginx, Tembo vs. Aurona, and Hetzner LB vs. ALB - but >> it is working for many users. Also i set the cookie sticky cookie livetime >> to ~ 24h - so that the user will stay for a day on "his" server. >> >> You can also monitor the guacd-logs on both docker-hosts to see if the >> servers are "switching". >> >> Best regards, >> >> Tobias >> >> >>
