Stack Overflow
Stack Overflow

Questions tagged [jsessionid]

JSESSIONID is the name of the tracking parameter defined by the Java servlet API.

JSESSIONID is the name of the tracking parameter defined by the Java servlet API. The parameter can either be set as a cookie or as part of the url.
If a request specifies a JSESSIONID, the server will use it if it determines if it is valid. If the JSESSIONID in the request is missing or invalid, the server generates a new unique one.
Sessions can be configured to time out (usually 30 minutes) after which time the session id is no longer valid.

Related tags:

461 questions
0
votes
0 answers

JSESSIONID cookie is being set on every HTTP request

I have a JSF 2.2 web application on Tomcat 7.0.41. As authentication I use DIGEST with realm. New JSESSIONID is set on every HTTP request and it looks like this: Set-Cookie JSESSIONID=...; Expires=Mon, 23-Sep-2013 11:35:25 GMT; Path=/domain/;…
vonzdar
  • 11
  • 3
0
votes
1 answer

how do I get the apache httpd session id

I have an application which runs on tomcat behind apache 2.4.6 configured with mod_session_dbd. I need the session info that gets persisted in the database. I see that apache saves the session info as a cookie in the browser as well. But, when I…
Karthick R
  • 599
  • 9
  • 25
0
votes
1 answer

WSO2 Authentication - Difference between JSESSIONID and RememberMeDataValue

When logging in, into WSO2 Identity Server using the SOAP AuthenticationAdmin, I can choose to use the 'loginWithRememberMeOption'. When using this option, the Identity Server will provide a 'RememberMeDataValue'. For…
JimRoy
  • 121
  • 1
  • 10
0
votes
1 answer

Two applications on the same server use the same JSESSIONID

(I am using spring-security and tomcat 6) I have two applications A and B which are running on the same server. I have a situation which I am unable to solve. When I log in the A application, JSESSION takes a new value, say v-a.(This might be…
Matin Kh
  • 5,192
  • 6
  • 53
  • 77
0
votes
1 answer

Custom Session ID generation in Jboss 5

Is there a way to use custom session ID generator in Jboss 5? The reason I need this: my company application needs to pass penetration test and for that it needs to have session IDs, which "are 128 bit in length and comprised of random values".
HaXkil
  • 161
  • 6
0
votes
1 answer

jsessionID not kept between jmeter http requests

I'm trying to do a simple load-test in a website which requires you to log in first. I read the jmeter documentation about the cookie manager and looks like as long as I make all my requests within the same thread group where the cookie manager is…
user2391792
  • 1
  • 1
  • 1
0
votes
1 answer

JSESSION is being added automatically

In my websphere console session properties, the url rewrite is not enabled and I am 100% sure that I dont have any JSESSION suffix or anything on my jsp pages to generate and append the JSESSION. But the issue is on some specific pages like…
ComeRun
  • 921
  • 1
  • 20
  • 38
0
votes
2 answers

Cannot get object from Session

I have the following scenario: I access to a web application - that makes use of spring security, create an object in session, let us say a cart with some entries. I access the application using a restful client. I do have: user, password,…
user1532449
  • 322
  • 4
  • 14
0
votes
1 answer

How to handle sessions on multiple jettys on same host & port - dynamic contexts

I have the following requirements Multiple JARs. Each running an embedded Jetty. Run everyone on same domain/port - using reverse proxy (Apache) A JAR can have multiple instances running on different machines (yet under same host/port). Complete…
guy mograbi
  • 27,391
  • 16
  • 83
  • 122
0
votes
1 answer

how to set jsession id with http -only flag on sun one webserver

may be this is a duplicate question but as far as i searched the above question was related to Tomcat. and few of those methods which i tried like using to set http-only flag in web.xml doesn work with sun one webserver. So please suggest me how to…
user2026311
  • 1
  • 2
0
votes
2 answers

How to enable Sticky Session in WSO2 Elastic Load Balancer for Vaadin

wso2 or vaadin people I follow this guide to setup ELB for WSO2 Application Server http://docs.wso2.org/wiki/display/ELB203/Setup+ELB+with+WSO2+Application+Server The ELB works perfectly. However, My vaadin application show this error. Cookies…
Tommy
  • 1,960
  • 1
  • 19
  • 32
0
votes
1 answer

intercept j_security_check

when doing login in my login form which is based on j_security_check all ok. in that case I see that the path in JSESSIONID cookie has a value from the URL. but when a nother login page construct dynamic form (it is doing submit to the first login…
user1703401
  • 11
  • 3
0
votes
1 answer

Avoid Session shared across two tabs for two different application server on WebSphere 7

I am facing the similar problem like JSF force URL rewriting Want to avoid session sharing across applications Legacy system - Environment : JSF 1.2, jsf-api-2.1.0-b03, jsf-facelets-1.1.14, jsf-impl-1.2 I have two independent application servers…
Tej
  • 39
  • 6
0
votes
1 answer

when a request session is generated in weblogic how session id is determined

When a session is invalidated in a web app, if i make to that app a new request with the invalidated jsessionid in cookie, what will be the new session's id? As i inspect, a new session is generated but the session id remains same. I couldn't give…
jit
  • 452
  • 1
  • 7
  • 26
0
votes
1 answer

How do i prevent the session id being passed between client and server via URL query string?

How do i prevent the session id being passed between client and server via URL query string? I dont want the session identifier to be passed over the URL query string. How do i ensure this? Any help would be appreciated. Thanks Praveenkumar
praveenkumarHoolimath
  • 35
  • 4
1 2 3
30 31