FeralWhippet
Reputation: 43
Vert.x Web and session fixation
Using Vert.x Web handlers is it possible to fix session fixation problems (ie change the session id after user is authenticated), or do I have to implement my own session handling? I need a session during login handling, and I don't see how to create a new session with authentication tokens (or change the session id).
Upvotes: 0
Views: 254
Answers (1)
Paulo Lopes
Reputation: 5801
Vertx session id is regenerated when an upgrade from unauthenticated to authenticated happens.
You can request a new I'd atbany time with the method: Session.regenerateId()
Upvotes: 2
Related Questions
- How to fix Session fixation issue in Web Application
- sticky session with apache web server and tomcat servers
- Multiple sessions in single browser
- Handling sessions and remembering logged in user with vertx
- Java / JSP / Sessions
- Java Web application session variables
- How to make session in Java?
- Trying to maintain session in all the pages in Java
- Preventing session fixation in java
- Server session managment in Java