Author: aogburn
Date: 2014-08-20 08:58:33 -0400 (Wed, 20 Aug 2014)
New Revision: 2492
Modified:
branches/7.5.x/src/main/java/org/apache/catalina/authenticator/DigestAuthenticator.java
Log:
[BZ-1126490] create session prior to Digest 401 so loadbalancers can maintain stickiness
Modified:
branches/7.5.x/src/main/java/org/apache/catalina/authenticator/DigestAuthenticator.java
===================================================================
---
branches/7.5.x/src/main/java/org/apache/catalina/authenticator/DigestAuthenticator.java 2014-08-20
12:38:31 UTC (rev 2491)
+++
branches/7.5.x/src/main/java/org/apache/catalina/authenticator/DigestAuthenticator.java 2014-08-20
12:58:33 UTC (rev 2492)
@@ -255,6 +255,9 @@
// to be unique).
String nonce = generateNonce(request);
+ // Ensure a session is created to have stickiness through loadbalancers
+ request.getSessionInternal(true);
+
setAuthenticateHeader(request, response, config, nonce,
principal != null && digestInfo.isNonceStale());
response.sendError(HttpServletResponse.SC_UNAUTHORIZED);
Property changes on:
branches/7.5.x/src/main/java/org/apache/catalina/authenticator/DigestAuthenticator.java
___________________________________________________________________
Added: svn:mergeinfo
+
/branches/7.4.x/src/main/java/org/apache/catalina/authenticator/DigestAuthenticator.java:2485
Show replies by date