Win a copy of Java 9 Modularity: Patterns and Practices for Developing Maintainable Applications this week in the Java 9 forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Tomcat 7 session.invalidate() doesn't work when setting sessionCookiePath="/" in context.xml  RSS feed

cc won
Posts: 1
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator

I am trying to assign a new session id after user login by calling session.invalidate() method.

In JAVA_HOME/conf/context.xml as following:

<Context sessionCookiePath="/">

The above configuration doesn't re-new session id when session.invalidate() is called in the Servlet.

If remove sessionCookiePath="/" in in JAVA_HOME/conf/context.xml as following:


By calling session.invalidate() method, a new session id will be assigned.

Is there a workaround or missing configuration.

It is sorta covered in the JavaRanch Style Guide.
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!