SilverStream Session Problem

[Guest_imported]

Can anyone put more light on the differences between silverstream 3.7.2 and silverstream 3.7.3?
Also there seems to be a problem with creating a new session after invalidation the session for the same user. It throws IllegalStateException: Session has already been invalidated. Can anyone help me please?

 

[mingus]

I have had the same problem but SilverStream refused to address the issue when I contact with them saying it was my code! Nice to know it isn't.

I just remove a session object with the login information on logout, as invalidating the session object creates the problem you describe above.

 

[BetterLateThanNever]

I know this is a long time after, but it's still an Ag bug.

This is the work around (works in servlets too, edit the code appropriately):

System.out.println("Invalidate the session");
Cookie c = new Cookie("JSESSIONID","invalidated");
c.setMaxAge(0);
c.setPath("/");
getCurrentResponse().addCookie(c);
AgiSession thisSession =
(AgiSession) getCurrentRequest().getSession(true);
thisSession.invalidate();
//Optionally, you can redirect to a loginpage at the end.
showPage("./testsession.html");

What this does is to tell the browser to delete the in memory Cookie for SilverStream's session tracking.

Cheers.