-
Type:
Feature Request
-
Status: Under Review
-
Priority:
Minor
-
Resolution: Unresolved
-
Affects Version/s: 6.1.0 CE GA1, 6.2.0 CE M3
-
Fix Version/s: None
-
Component/s: Accessibility, Application Security
Liferay uses default "jsessionid" instead of value of configurable property "org.apache.catalina.SESSION_COOKIE_NAME" for the session id cookie.
Steps to reproduce:
1. On Unix machine, in setenv.sh, set the following variables
JAVA_OPTS="${JAVA_OPTS} -Dorg.apache.catalina.SESSION_PARAMETER_NAME=MYSESSIONID "
JAVA_OPTS="${JAVA_OPTS} -Dorg.apache.catalina.SESSION_COOKIE_NAME=mysessionid "
2. Start the portal.
3. Navigate to the login page.
4. The application server sets the cookie with name "mysessionid", however, Liferay Portal tries to use the hardcoded "jsessionid" hence the URL has a "jsessionid" variable. However, the user cannot login.