Implement appname.protectedSessionCookie property in apps.properties.

If set to "false", session cookies will not be bound to the client's ip subnet.
2005-04-22 13:23:25 +00:00 · 2005-04-22 13:23:25 +00:00 · 6c44c5fa66
commit 6c44c5fa66
parent 21e98e793e
2 changed files with 64 additions and 25 deletions
--- a/src/helma/main/ApplicationManager.java
+++ b/src/helma/main/ApplicationManager.java
@ -282,6 +282,7 @@ public class ApplicationManager implements XmlRpcHandler {
        String xmlrpcHandlerName;
        String cookieDomain;
        String sessionCookieName;
+        String protectedSessionCookie;
        String uploadLimit;
        String debug;
        boolean encode;
@ -310,6 +311,7 @@ public class ApplicationManager implements XmlRpcHandler {

            cookieDomain = props.getProperty(name + ".cookieDomain");
            sessionCookieName = props.getProperty(name + ".sessionCookieName");
+            protectedSessionCookie = props.getProperty(name + ".protectedSessionCookie");
            uploadLimit = props.getProperty(name + ".uploadLimit");
            debug = props.getProperty(name + ".debug");
            encode = "true".equalsIgnoreCase(props.getProperty(name +
@ -463,6 +465,10 @@ public class ApplicationManager implements XmlRpcHandler {
                        holder.setInitParameter("sessionCookieName", sessionCookieName);
                    }

+                    if (protectedSessionCookie != null) {
+                        holder.setInitParameter("protectedSessionCookie", protectedSessionCookie);
+                    }
+
                    if (uploadLimit != null) {
                        holder.setInitParameter("uploadLimit", uploadLimit);
                    }