View Issue Details

Jump to NotesIssue History
IDProjectCategoryView StatusDate SubmittedLast Update
0001222savapage-server[All Projects] Generalpublic2022-07-29 17:212022-07-29 17:27
ReporterrijkrAssigned Torijkr 
PrioritynormalSeveritymajorReproducibilityalways
Status resolvedResolutionfixed 
Product Version1.3.0 
Target Version1.4.0Fixed in Version1.4.0 
Summary0001222: Optimize HTTP session management
DescriptionIST-1: An HTTP session is persisted on disk by Wicket if any component of an accessed Page is stateful. This creates a lot of useless session files for unsolicited requests outside the web browser (crawlers).
IST-2: HTTP sessions remain active for web crawler requests.
SOLL-1: Make Wicket AjaxButton instances stateless so HTTP sessions are not persisted on disk.
SOLL-2: Invalidate sessions of unauthenticated pages as precaution against web crawlers. Crawlers "hit and run" outside a web browser and don't trigger Javascript events (after DOM is fully loaded) that result in rightly scoped http sessions. Note: a web crawler can be simulated with `wget` of SavaPage Web App.
TagsNo tags attached.

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2022-07-29 17:21 rijkr New Issue
2022-07-29 17:21 rijkr Status new => assigned
2022-07-29 17:21 rijkr Assigned To => rijkr
2022-07-29 17:27 rijkr Status assigned => resolved
2022-07-29 17:27 rijkr Resolution open => fixed
2022-07-29 17:27 rijkr Fixed in Version => 1.4.0