Question

1
Replies
275
Views
MuniKatta Member since 2017 14 posts
computershare
Posted: 2 years ago
Last activity: 2 years 3 months ago
Closed

want to Change JsessionID after login

We have a security finding where we need to Invalidate all existing session tokens on any change of authentication state. Is there any way we can achieve this?

We Identified that session cookies are not being updated when the user transitions between different levels of authentication.

We are using Tomcat server 7.0.64

Low-Code App Development DevOps Low-Code App Development Testing Applications System Administration Low-Code App Development Installation and Deployment
Moderation Team has archived post
Share this page LinkedIn