| Author |
Http, Https and sessions
|
Sean MacLean
author
Ranch Hand
Joined: Nov 07, 2000
Posts: 621
|
|
Here's a scenario that, hopefully, someone can shed some light one. We currently have a web application up an running using iPlanet 4.3. The client wants the login to use SSL (https). Ok, this is not a problem. However, the rest of the site is simply http. In setting up iPlanet to handle SSL, we found that the server instance can only listen to either the https or the http port! The probelm is, if they login using https, and we set the session variables (indicating that they have loggin, etc) and then redirect them to the rest of the site (http, which is a client stipulation so https for the whole site is not an option) then session is lost. Obviously, this is because we're moving from one server instance to another. We can hack a solution, but I'm wondering if this is an issue that others have encountered? Using weblogic for instance, allows the same server instance to listen to both ports and the sesson is retained. Any thoughts?
Sean
|
 |
Chandra Velpula
Greenhorn
Joined: Sep 30, 2004
Posts: 1
|
|
Hi
Hope this might work out.
1.Using Iplnet as proxy by configuring iplanet using netscape plug in
2 makeing HTTPS between client and Iplanet
3.Then you can choose the option of http/https between iplanet and app server
check the url
http://e-docs.bea.com/wls/docs70/plugins/nsapi.html
cheers
|
|
 |
|
|
subject: Http, Https and sessions
|
|
|
0
