[jboss-jira] [JBoss JIRA] Updated: (JBPORTAL-2030) Portal session expiration should invalidate portlet webapps sessions

Friday, 4 July 2008


     [ http://jira.jboss.com/jira/browse/JBPORTAL-2030?page=all ]

Thomas Heute updated JBPORTAL-2030:
-----------------------------------

    Fix Version/s: 2.7.0 Beta1
                       (was: 2.7.0 Alpha1)

...
 Portal session expiration should invalidate portlet webapps sessions
 --------------------------------------------------------------------

                 Key: JBPORTAL-2030
                 URL: http://jira.jboss.com/jira/browse/JBPORTAL-2030
             Project: JBoss Portal
          Issue Type: Bug
      Security Level: Public(Everyone can see) 
          Components: Portal Core
    Affects Versions: 2.6.5 SP1
            Reporter: Boleslaw Dawidowicz
             Fix For: 2.7.0 Beta1


 Currently when portal session expires and after page refresh user logs in with different
credentials portlet session can last and contain outdated data. Good example of such
behavior is this case : http://jira.jboss.com/jira/browse/JBPORTAL-2025.
 Current workaround is to set session-timeout that matches portal servlet one in all
portlet web application.
 Proper solution could be an interceptor that would track session id around request
dispatch and invalidate it if needed. 
-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-jira] [JBoss JIRA] Updated: (JBPORTAL-2030) Portal session expiration should invalidate portlet webapps sessions