-
Bug
-
Resolution: Done
-
Major
-
7.3.z.GA
-
None
-
3
-
False
-
False
-
-
-
-
-
-
Undefined
-
-
EAP DOC Sprint 5:March 1- 12
The session-id-length's description was updated on WFLY-7511, so it needs to update for EAP docs according to it.
session-id-length : The length of the generated session ID. Longer session ID’s are more secure.
Table A.64. servlet-container Attributes : session-id-length
https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/html-single/configuration_guide/index#servlet_container_attributes
The length of the generated session ID. Longer session ID's are more secure. This number refers to the number of bytes of randomness that are used to generate the session ID, the actual ID that is sent to the client will be base64 encoded so will be approximately 33% larger (e.g. a session id length of 30 will result in a cookie value of length 40).
- clones
-
JBEAP-20879 [GSS](7.4.0.Beta) Update description for session-id-length
- Closed