IDP on Tomcat 8.5.x

[Peters C.L.]

Sure - all I did was add:


<CookieProcessor className="org.apache.tomcat.util.http.LegacyCookieProcessor" alwaysAddExpires="true"></CookieProcessor>


in to /etc/tomcat/context.xml. There are other ways of achieving similar results with certain caveats. The docs on the Tomcat website explain in detail: https://tomcat.apache.org/tomcat-8.5-doc/config/cookie-processor.html#Legacy_Cookie_Processor_-_org.apache.tomcat.util.http.LegacyCookieProcessor


Clayton

Apache Tomcat 8 Configuration Reference (8.5.13) - The ...<https://tomcat.apache.org/tomcat-8.5-doc/config/cookie-processor.html#Legacy_Cookie_Processor_-_org.apache.tomcat.util.http.LegacyCookieProcessor>
tomcat.apache.org
The CookieProcessor element represents the component that parses received cookie headers into javax.servlet.http.Cookie objects accessible through HttpServletRequest ...




________________________________
From: users <users-bounces at shibboleth.net> on behalf of Ortner Nikolaus <N.Ortner at fh-kaernten.at>
Sent: 09 May 2017 12:23
To: 'Shib Users'
Subject: Re: IDP on Tomcat 8.5.x

> (adding a CookieProcessor to context.xml to add an Expires field on
> to cookie because certain browsers not handling the Max-Age field)

Do you have a short how-to on this issue? - seems like the IE 11 still has this problem (for a test see: http://mrcoles.com/media/test/cookies-max-age-vs-expires.html)
Cookies test - Peter Coles<http://mrcoles.com/media/test/cookies-max-age-vs-expires.html>
mrcoles.com
Home Cookie Test Demo: max-age vs expires. Each test below sets a cookie with some combination of the "max-age" or "expires" parameters. It turns out that Internet ...



Kind regards.

--
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20170509/14604a2b/attachment-0001.html>