Uploaded image for project: 'Wicket'
  1. Wicket
  2. WICKET-6571

BaseWebSocketBehavior should check sessionId cookie name dynamically

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 8.0.0
    • 8.1.0
    • wicket-native-websocket
    • None

    Description

      When creating a WebSocket connection, Wicket tries to check if session id is tracked by URL or by cookies.

      The code is in the org.apache.wicket.protocol.ws.api.BaseWebSocketBehavior#getSessionId(Component component)

      It uses a hardcoded sessionId cookie name (JSESSIONID). So when an application uses a different sessionId cookie name, this code wrongly assumes there is no cookie with session id and appends session Id in the websocket connection URL.

      I think it should use to get session id cookie name

      servletContext.getSessionCookieConfig().getName()

       

      Attachments

        Issue Links

          breaks

          Bug - A problem which impairs or prevents the functions of the product. WICKET-6593 "A Cookie name can not be null or empty" when accessing page with WebSocketBehavior

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              mgrigorov Martin Tzvetanov Grigorov
              jan-krakora Jan Krakora
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: