From: Nikla R. (JIRA) <ji...@co...> - 2007-11-24 10:35:58
|
Respect jsessionid from URL over cookie --------------------------------------- Key: JETTY-469 URL: http://jira.codehaus.org/browse/JETTY-469 Project: Jetty Issue Type: Improvement Components: Servlet Affects Versions: 6.1.5 Reporter: Nikla Ratinen When jsessionid is provided in both URL and cookie, org.mortbay.jetty.servlet.SessionHandler could prefer url version over the one provided in cookie. Although this is not Jetty's problem by no means, this would help to solve Firefox / Flash application file upload problem discussed eg. in http://thanksmister.com/?p=59. Unfortunately Flash seems to send jsessionid cookies from old sessions (during file upload only). Manually encoding jsessionid to URL is a suggested workaround but it does not work with Jetty since Jetty picks up the id from cookie first and never looks to URL if one is found from cookie. I doubt there will be a Flash or Firefox fix for this anytime soon. Would there be other implications overlooked by me if the order were changed to prefer URL encoded jsessionid's? Thanks, -- Nikla -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira |