Java Mailing List Archive

http://www.junlu.com/

Home » Home (12/2007) » Apache Tomcat »

Session timing out despite of user-actvity

Gregor Schneider

2007-07-18

Replies:

Hi guys,

the following sympomps:

We have 2 Apache HTTPD-instances (SSL) behind a CISCO-loadbalancer,
the HTTPDs serving static content, dynamic content (servlets) are
served by 2 Tomcat instances (5.5).
HTTPD and Tomcat are linked via mod_jk 1.2.19

I've specified a session-timeout of 240 (8 hours) in
$catalina_home/web-inf/web.xml

Now although our servlets are accessed in bewteen those for hours, the
session times out after 4 hours.

Actually I understood, that after any user-action within those 4
hours, the session should be prolonged again for 4 hours, right or
wrong?

I've implemented a session-listern which logs creation and destruction
of the session.

Attached a sample of the logs:

2007-07-17 08:33:04,924 INFO             [TP-Processor1]:
User added: xxx, SessionID:0C01237D58836AC6F89D1E6685885596
2007-07-17 12:33:37,643 INFO
[ContainerBackgroundProcessor[StandardEngine[Catalina]]]:     User
removed: xxx, SessionID: 0C01237D58836AC6F89D1E6685885596
2007-07-17 12:46:47,104 INFO             [TP-Processor1]:
User added: xxx, SessionID:0C01237D58836AC6F89D1E6685885596
2007-07-17 16:46:50,667 INFO
[ContainerBackgroundProcessor[StandardEngine[Catalina]]]:     User
removed: xxx, SessionID: 338CE40CA019BF2C00B06E837652DEAC

As you can see, after 4 hours the user is removed since the
session-listener catches the destruction of the session.

However, my apache-HTTPD-access-logs for that very user "xxx" show me,
that she has accessed our servlets in between:

213.00.000.000 - xxx [17/Jul/2007:15:13:06 +0200] "GET
/mikroalbumin_im_urin.htm HTTP/1.0" 200 5127
"https://www.our-domain.com/OurServlet/OurServlet" "Mozilla/4.0
(compatible; MSIE 6.0; Windows NT 5.1; SV1)"

Now is this a bug, a feature or do I miss something here?

Note:

I've defined the SingleSignLogonValve in
$catalina_home/conf/server.xml as specified below:

<Valve className="org.apache.catalina.authenticator.SingleSignOn" />

Curiously awaiting your valued remarks... ;)

Cheers

Gregor
--
what's puzzlin' you, is the nature of my game
gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2
gpgp-key available @ http://pgpkeys.pca.dfn.de:11371

---------------------------------------------------------------------
To start a new topic, e-mail: users@(protected)
To unsubscribe, e-mail: users-unsubscribe@(protected)
For additional commands, e-mail: users-help@(protected)

©2008 junlu.com - Jax Systems, LLC, U.S.A.