Need to maintain a session from http to https and back

Posted on 2007-10-19
Last Modified: 2013-11-19
Running Linux with Tomcat 5.0.28. We have jsp pages.
Most of site is non-ssl. Need to collect credit card info on ssl page.
When we switch the user to the https page, we lose session info.
How do i not lose session info, and can i keep the session info when i return him to the regular pages?
Question by:JerryNorton
    LVL 92

    Expert Comment

    you could add the session id to the url

    Author Comment

    and then what? can i assign the new session the old session id?
    Can I access the values stored session.getAttribute?
    LVL 19

    Accepted Solution

    ideally speaking, this should not be happening.
    I think tomcat uses server cookies to set up sessions and unless they are not set to secure.. they will be accesible..
    ( and they will be set to secure only when the session was First created in SSL).

    Featured Post

    Enabling OSINT in Activity Based Intelligence

    Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

    Join & Write a Comment

    Popularity Can Be Measured Sometimes we deal with questions of popularity, and we need a way to collect opinions from our clients.  This article shows a simple teaching example of how we might elect a favorite color by letting our clients vote for …
    Password hashing is better than message digests or encryption, and you should be using it instead of message digests or encryption.  Find out why and how in this article, which supplements the original article on PHP Client Registration, Login, Logo…
    This tutorial demonstrates how to identify and create boundary or building outlines in Google Maps. In this example, I outline the boundaries of an enclosed skatepark within a community park.  Login to your Google Account, then  Google for "Google M…
    This tutorial explains how to use the VisualVM tool for the Java platform application. This video goes into detail on the Threads, Sampler, and Profiler tabs.

    732 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    24 Experts available now in Live!

    Get 1:1 Help Now