[jboss-jira] [JBoss JIRA] Updated: (JBWEB-153) Parent context cookie overwriting URL encoded cookie

Friday, 4 December 2009

     [
https://jira.jboss.org/jira/browse/JBWEB-153?page=com.atlassian.jira.plug...
]

Mike Millson updated JBWEB-153:
-------------------------------

    Attachment: UrlRewriting.java.zip

UrlRewriting servlet source.

...
 Parent context cookie overwriting URL encoded cookie
 ----------------------------------------------------

                 Key: JBWEB-153
                 URL: https://jira.jboss.org/jira/browse/JBWEB-153
             Project: JBoss Web
          Issue Type: Bug
      Security Level: Public(Everyone can see) 
          Components: Core
    Affects Versions: JBossWeb-2.0.0.GA_CP06, JBossWeb-2.1.3.GA
            Reporter: Mike Millson
            Assignee: Mike Millson
         Attachments: testbox.war, UrlRewriting.java.zip

 When cookies are disabled for the context, a session cookie from a parent context will
overwrite the session ID encoded in the URL.
 Reference:
 https://issues.apache.org/bugzilla/show_bug.cgi?id=43839 
-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-jira] [JBoss JIRA] Updated: (JBWEB-153) Parent context cookie overwriting URL encoded cookie