Previous Topic: Problem with Forced Authentication When User Identity Changes (125553)Next Topic: Mutli-value Assertion Attributes Not Handled Properly (124560)

Release NotesFederation Security Services Release NotesFixes in r12 SP3Federation Web Services Cannot Decode SMSESSION Cookie on Tomcat (129196)

Federation Web Services Cannot Decode SMSESSION Cookie on Tomcat (129196)

Symptom:

If Federation Web Services is deployed on a Tomcat server, the Web Agent protecting the target resource at the Service Provider cannot decode the session cookie.

Note: Federation Web Services is installed by the Web Agent Option Pack.

Solution:

When Tomcat 5.5 and higher is used as application container for Federation Web Services, add the following system property to the Tomcat start-up shell or batch file and set it to true:

-Dorg.apache.catalina.STRICT_SERVLET_COMPLIANCE=true

STAR Issue: 19884857