Support for javax.servlet.request.ssl_session

Details

Type: New Feature
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 6.1.14
Fix Version/s: None
Component/s: Security and SSL
Labels:
None

Number of attachments :
0

Description

httpServletRequest.getAttribute("javax.servlet.request.ssl_session") gives me null on Jetty, while my production environment (Tomcat based) gives me some value so I can do SSL session tracking. Could you also support the javax.servlet.request.ssl_session attribute in Jetty?

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

Jan Bartel added a comment - 04/Feb/09 5:10 AM

This used to be a proprietary value set by Tomcat and Tomcat-derived containers.

It has recently been proposed to the Servlet Spec 3.0 draft by Jan Luehe of Sun.

As it is part of Servlet Spec 3.0, we'll add it to jetty-7.

Show

Jan Bartel added a comment - 04/Feb/09 5:10 AM This used to be a proprietary value set by Tomcat and Tomcat-derived containers. It has recently been proposed to the Servlet Spec 3.0 draft by Jan Luehe of Sun. As it is part of Servlet Spec 3.0, we'll add it to jetty-7.

Hide

Permalink

Jan Bartel added a comment - 04/Feb/09 6:24 AM

Actually, to be clear about this, the new Servlet Spec calls this attribute (note it ends in _id):

javax.servlet.request.ssl_session_id

I've added this to jetty-7.

Jan

Show

Jan Bartel added a comment - 04/Feb/09 6:24 AM Actually, to be clear about this, the new Servlet Spec calls this attribute (note it ends in _id): javax.servlet.request.ssl_session_id I've added this to jetty-7. Jan

Hide

Permalink

Frank Cornelis added a comment - 04/Feb/09 8:46 PM

Thanks.

Show

Frank Cornelis added a comment - 04/Feb/09 8:46 PM Thanks.

People

Assignee:

Jan Bartel

Reporter:

Frank Cornelis

Vote (0)

Watch (1)

Dates

Created:

04/Dec/08 5:44 AM

Updated:

20/Apr/09 1:07 AM

Resolved:

04/Feb/09 6:24 AM