Pluto
  1. Pluto
  2. PLUTO-474

CLONE -portlet session should not be invalidated when lastAccessedTime is 0

    Details

    • Type: Bug Bug
    • Status: Resolved
    • Priority: Critical Critical
    • Resolution: Fixed
    • Affects Version/s: 1.1.5
    • Fix Version/s: 1.1.5
    • Component/s: portlet container
    • Labels:
      None

      Description

      Some servlet containers do not automatically initialized the lastAccessedTime for new sessions they create. They wait until the next request occurs. For example in jetty this servlet will print out "0" the first time you access it:

      public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException

      { response.getWriter().println(request.getSession(true).getLastAccessedTime()); }

      and then subsequent access print out the current time as you would expect.

      Pluto's PortletRequestImpl#getPortletSession() method does not work correctly for these servlet containers because it assumes that the session's lastAccessTime has been initialized. When that time has not been initialized it proceeds to invalidate the session since it thinks the session has exceeded the maxInactiveInterval.

      Another problem in this method is that when an httpSession has been invalidated it is still used by the cached portletSession.

      1. PLUTO-474.diff
        2 kB
        Benjamin Gould

        Issue Links

          Activity

            People

            • Assignee:
              Elliot Metsger
              Reporter:
              Benjamin Gould
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development