jsessionid « Security « Spring Q&A





1. prevent generating new jsessionid?    stackoverflow.com

greetings all my application uses spring framework,spring security 3.0.2 we use apache tomcat as app server the problem is that with each new request to the application a new jsessionid is generated and a new ...

2. Why jsessionid is appended to each url?    stackoverflow.com

I am deploying an app using the Spring framework on the Apache Tomcat. When running the application from Tomcat directly, there's no jsessionid appended to any URL at all, but after ...

3. Security risk using jsessionid    forum.springsource.org

Hello, If some script captures the jsessionid, an unauthorized person can to gain access to the system. How can I customize Spring Security to does not use the jsessionid? I can ...

4. Really weird thing going on with JSESSIONID and Spring Security, please advice    forum.springsource.org

Sep 26th, 2011, 08:58 AM #1 fwachs View Profile View Forum Posts Private Message Junior Member Join Date May 2011 Posts 8 Really weird thing going on with JSESSIONID and Spring ...

5. /j_acegi_security_check and jsessionid    forum.springsource.org

/j_acegi_security_check and jsessionid Hi all, how do you deal with sessions (only based on url rewriting) that should survive a login. I have the situation that I would like a customer ...

6. how to access current JSessionId?    forum.springsource.org

HI, i want to access current sessionId when user logged in.. reason i need this is i want to store info that user logged-in with details like(date time ,name, sessionId) So ...