HTTPS « Session « Java Enterprise Q&A





1. How to configure WCF service in IIS7: HTTPS, Sessions, wsHttpBinding (SOAP)    stackoverflow.com

The situation:

  1. We have Windows 2008 web serverse with IIS7, (.NET4)
  2. We can comminicate with the webserver only through the default HTTPS (443) port
  3. There is an ASP.NET website hosted ...

2. Secured web application development in java    stackoverflow.com

i have asked to do a web application using java (using open source frameworks) which should be a high secured application. I have an impression that using https will solve all the ...

3. How to pass session values from http to https    bytes.com

HI i want to transfer url from the http to https in shopping cart t lossing session . is it possble to do this . Hi ksrashmi! I'm sorry, but your ...

4. Need an advice on how to share https session between test plans    jmeter.512774.n5.nabble.com

Hello We have encountered this problem: We have several jmeter tests (test plans) which use several identical steps at the beginning and at the end of the test. Previously we decided to take all of the initial steps out to make the test plan setup.jmx, and the ending steps into the test plan teardown.jmx and just launch them using IncludeController in ...

5. Sessions in HTTP & HTTPS    coderanch.com

No, you cannot use the same session for both http and https URL's. See HttpResponseBase.java in the Tomcat 4 source code, specifically the isEncodeable() method. The URL's in a session must match down to and including the servlet context. It explicitly checks both URL's with getScheme(), which will be different in the case you mention.

6. session for HTTP AND HTTPS    coderanch.com

No, you will not be able to do that. The first time you use an HTTPS url, the container will create a new session. What you can probably do is, put the session associated with the HTTP part into the servlet context (sessionid-session pair) and pass the sessionid with the https url as a parameter. Use that sessionid to get the ...

8. Too many sessions created when running HTTPS port on AIX/Jetty    coderanch.com

I'm running an HTTPS port using Jetty 5.1.3 on AIX 5.3. Up until now when running my webapp on windows or solaris machines, my session tracking and use of session objects was working fine. And this configuration works fine when using http ports. What seems to happen in the secured port situation is that new sessions are created every time I ...

9. sharing session state between https and http    coderanch.com

Is there any way to share a httpsession between the confidential and the non confidential parts of a web-app, without resorting to url rewriting ? The question relates to the fact that whenever I do sendRedirect to an http servlet from inside an https servlet (one having a url with the CONFIDENTIAL transport-guarantee) , any session that I created inside the ...





10. Switching between HTTP and HTTPS Sessions    forums.oracle.com

Hi all. Am trying to create jsp pages where the login page runs on https but the rest are on http protocol. The first page 'index.jsp' is the home page. I have set the web.xml for the page i need secured but seems the other pages too get secured contrary to my wish. In the servlet, I have redirected by hard-coding ...

11. Session Management in Https from Http Pages    forums.oracle.com

I am maintaining the user login information from a secure (https) login page in a cookie and when this cookie value is requested in a "http" page it is coming as null. The same is the case with Session object set in "Https" and when received in "Http" is throwing null value. How to retrieve the session state from Https to ...

12. session expires between http and https    forums.oracle.com

I have an issue moving from http to https on a website. All is fine with the session when browsing the site over http, however, when I browse the site over https, I believe the session expires sometimes, as I cannot access some attributes I have in session. I'm using tomcat 5.5, so I don't think tomcat is dropping session data, ...