Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 7.0.8.CR1, 7.0.8.GA
Affects Version/s: None
Component/s: Undertow
Labels:
- No_QA_effort

CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.0.z.GA
Git Pull Request:
https://github.com/undertow-io/undertow/commit/65d48b69cca98e475acb60e800e750fe8c25f8b3

Sprint:
EAP 7.0.8

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

javax.servlet.SessionCookieConfig#getMaxAge states that by default -1 should be returned:

Gets the lifetime (in seconds) of the session tracking cookies created on behalf of the application represented by the ServletContext from which this SessionCookieConfig was acquired.
By default, -1 is returned.

Source

Undertow does not respect this since its javax.servlet.SessionCookieConfig implementation, SessionCookieConfigImpl, delegates to Undertow's io.undertow.server.session.SessionCookieConfig which defaults the maxAge attribute to zero.

We have recently implemented the ability to configure Spring Session's session cookie using SessionCookieConfig and this causes problems for Undertow users since we rely on -1 to indicate the default value, as defined by Servlet API spec.

clones

JBEAP-11842 (7.1.0) UNDERTOW-1111 Undertow does not respect javax.servlet.SessionCookieConfig#getMaxAge contract

Closed

is incorporated by

JBEAP-11773 [GSS](7.0.z) Upgrade undertow from 1.3.29.Final to 1.3.31.Final

Closed

Assignee:: Stuart Douglas (Inactive)

Reporter:: Tomas Hofman

Tester:: Michael Cada

QA Contact:: Michael Cada

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2017/06/28 9:28 AM

Updated:: 2024/09/02 4:02 PM

Resolved:: 2017/06/28 9:34 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates