This week's book giveaway is in the Design forum.
We're giving away four copies of Design for the Mind and have Victor S. Yocco on-line!
See this thread for details.
Win a copy of Design for the Mind this week in the Design forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Tomcat 7 session.invalidate() doesn't work when setting sessionCookiePath="/" in context.xml

cc won
Posts: 1
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator

I am trying to assign a new session id after user login by calling session.invalidate() method.

In JAVA_HOME/conf/context.xml as following:

<Context sessionCookiePath="/">

The above configuration doesn't re-new session id when session.invalidate() is called in the Servlet.

If remove sessionCookiePath="/" in in JAVA_HOME/conf/context.xml as following:


By calling session.invalidate() method, a new session id will be assigned.

Is there a workaround or missing configuration.

Consider Paul's rocket mass heater.
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic