Hi Richard,

How do you log in and to what? What do you mean with it doesn't work? That 
Tomcat creates a new session?

I tried what you did: Accessed some webapp in FF and pasted the URL including 
jsessionid in IE - got the same session.

I don't think Tomcat cares about anything else than the jsessionid in the URL 
or the session cookie.

Maybe it is the authentication mechanism that does something with the session?

Torsten 

-----Original Message-----
From: kennardconsulting [mailto:[EMAIL PROTECTED] 
Sent: 12. november 2008 07:00
To: users@tomcat.apache.org
Subject: Does jsessionid on the URL also check the User-Agent?



Dear All,

When passing a jsessionid on the URL such as...

   http://foo.com;jsessionid=123

...does Tomcat do something clever, like checking the User-Agent, before
agreeing to hook into the existing '123' session?

If I log in using, say, Firefox and note the jsessionid, then open a new
Firefox and paste in a URL like the one above it works as expected. But if I
open IE and paste the same URL it doesn't work?

Does the URL rewriting check the User Agent? Can I turn this off?

Regards,

Richard.
-- 
View this message in context: 
http://www.nabble.com/Does-jsessionid-on-the-URL-also-check-the-User-Agent--tp20454717p20454717.html
Sent from the Tomcat - User mailing list archive at Nabble.com.


---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to