Troubleshooting
Problem
Session stickiness issue in JBoss cluster
Symptom
We’re running apache front-end for SWC (web channel) application. To
running multiple nodes in backend SWC, we need to use jvmRoute in jboss for
session stickiness. Everytime we try to setup jvmRoute on jboss, the
application throws error about non-conformed JSESSIONID because of the appended
jvmRoute to JSESSIONID. jvmRoute is a standard setting for session stickiness
in jboss.
We’re running SWC with certified platform:
Redhat 5.4
Apache 2.2
Jboss 4.3
Oracle 11G.
ValidationException @
com.sterlingcommerce.security.dv.SCValidationException.<init>(SCValidationExcept
ion.java:76) [system]: DataValidationLogger
2010-05-06 11:33:00,640 INFO
[STDOUT] 2010-05-06 11:33:00,640:WARN :ajp-172.30.0.152-8009-15:
SECURITY-FAILURE - Input does not conform to pattern: context=Requested
JSESSIONID, pattern=^[a-zA-Z0-9!_:\-]*$,
Input=4E79908CD8B8589915CA864A003AE236.pocswc2
Resolving The Problem
This looks like a Input Validation error, Platform validates all incoming
input in a request, including cookies request params and headers.
This
validation is done against a registered regex pattern. So to explain the
error:
The registered regex for validating JSESSIONID is:
=^[a-zA-Z0-9!_:\-]*$
And the actual value of JSESSIONID is:
4E79908CD8B8589915CA864A003AE236.pocswc2
Looks like the character
‘.’ needs to be added to the regex for JSESSIONID.
This is
fixed as part of 9.0 HF2.
Historical Number
NFX9413
Product Synonym
[<p><b>]Escalation ID[</b><p>];221120;[<p><b>]Severity[</b><p>];Normal;[<p><b>]Type[</b><p>];NormalFix
Was this topic helpful?
Document Information
Modified date:
16 June 2018
UID
swg21558848