Summary: | DeltaManager Form Authentication Fails to Replicate Changes in Sessions | ||
---|---|---|---|
Product: | Tomcat 9 | Reporter: | Kenneth Gendron <kenneth.gendron> |
Component: | Cluster | Assignee: | Tomcat Developers Mailing List <dev> |
Status: | RESOLVED FIXED | ||
Severity: | normal | ||
Priority: | P2 | ||
Version: | 9.0.30 | ||
Target Milestone: | ----- | ||
Hardware: | PC | ||
OS: | All |
Description
Kenneth Gendron
2019-12-31 07:36:22 UTC
Can you confirm you are using 9.0.30? A "minor" change was made to the post-login-session-id-changing code recently and it's possible a bug was introduced. Would it be possible for you to re-try with 9.0.29 or 9.0.29? Please leave this issue open (in case there really is a bug) but post everything to the users' mailing list instead of Bugzilla, which is not intended to be a support forum. When posting, please also post your reverse-proxy configuration. I tried with 9.0.29 also, all the way back to 9.0.17. None worked. For my testing I was not using a reverse proxy, but simply using a secondary IP between two machines, and having the browser connect to that IP, seeing if the session would hold as I moved the IP. I did notice that if I move the cluster configuration into the Host, and add ClusterSingleSignOn, it seems to work properly. And I do apologize for going here and not through the mailing list. Fixed in: - master for 9.0.31 onwards - 8.5.x for 8.5.51 onwards - 7.0.x for 7.0.100 onwards |