Details
-
Bug
-
Resolution: Won't Do
-
Major
-
None
-
None
-
None
-
None
-
Release Notes
Description
The JBoss Web SingleSignOn valve does not work with <distributable/> applications.
It incorrectly disassociates the SSO when a session is passivated.
Since this happens on every request with <distributable/> applications (for session replication), the SSO entry is destroyed at the end of the request.
The same issue of the SSO being removed would also happen if the session is passivated for any other reason.