2010-09-26 130 views
2

WAS6.1 server.xml中此波纹管条目的确切用法是什么?你能告诉我为什么我们需要这个“defaultCookieSettings”和他的属性“secure = false”。websphere应用程序服务器

defaultCookieSettings XMI:ID = “Cookie_1282579260990” 域= “” maximumAge = “ - 1” 安全= “假”

<components xmi:type="applicationserver.webcontainer:WebContainer" xmi:id="WebContainer_1282579260990" enableServletCaching="false" disablePooling="false"> 
     <stateManagement xmi:id="StateManageable_1282579260993" initialState="START"/> 
     <services xmi:type="applicationserver.webcontainer:SessionManager" xmi:id="SessionManager_1282579260990" enable="true" enableUrlRewriting="false" enableCookies="true" enableSSLTracking="false" enableProtocolSwitchRewriting="false" sessionPersistenceMode="NONE" enableSecurityIntegration="false" allowSerializedSessionAccess="false" maxWaitTime="5" accessSessionOnTimeout="true"> 
     <defaultCookieSettings xmi:id="Cookie_1282579260990" domain="" maximumAge="-1" secure="false"/> 
     <sessionDatabasePersistence xmi:id="SessionDatabasePersistence_1282579260990" datasourceJNDIName="jdbc/Sessions" userId="db2admin" password="{xor}Oz1tPjsyNjE=" db2RowSize="ROW_SIZE_4KB" tableSpaceName=""/> 
     <tuningParams xmi:id="TuningParams_1282579260990" usingMultiRowSchema="false" maxInMemorySessionCount="1000" allowOverflow="true" scheduleInvalidation="false" writeFrequency="TIME_BASED_WRITE" writeInterval="10" writeContents="ONLY_UPDATED_ATTRIBUTES" invalidationTimeout="30"> 
      <invalidationSchedule xmi:id="InvalidationSchedule_1282579260990" firstHour="14" secondHour="2"/> 
     </tuningParams> 
     </services> 
    </components> 

如果我到改变从安全= “真”,那么会是怎样的影响

回答

2

该设置将指定会话cookie包含安全字段。启用该功能只能将cookie交换限制为HTTPS会话。

相关问题