PK46781: SESSION.ISNEW() RETURNING INCORRECT VALUE

 Fixes are available

5.1.1.17: WebSphere Application Server V5.1.1 Cumulative Fix 17 for AIX
5.1.1.17: WebSphere Application Server V5.1.1 Cumulative Fix 17 for HP-UX
5.1.1.19: WebSphere Application Server V5.1.1 Cumulative Fix 19 for Linux
5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
5.1.1.18: WebSphere Application Server V5.1.1 Cumulative Fix 18 for AIX
5.1.1.18: WebSphere Application Server V5.1.1 Cumulative Fix 18 for HP-UX
5.1.1.18: WebSphere Application Server V5.1.1 Cumulative Fix 18 for Solaris
5.1.1.18: WebSphere Application Server V5.1.1 Cumulative Fix 18 for Windows
5.1.1.18: WebSphere Application Server V5.1.1 Cumulative Fix 18 for Linux
5.1.1.17: WebSphere Application Server V5.1.1 Cumulative Fix 17 for Linux
5.1.1.17: WebSphere Application Server V5.1.1 Cumulative Fix 17 for Solaris
5.1.1.17: WebSphere Application Server V5.1.1 Cumulative Fix 17 for Windows
5.1.1.19: WebSphere Application Server V5.1.1 Cumulative Fix 19 for AIX
5.1.1.19: WebSphere Application Server V5.1.1 Cumulative Fix 19 for Windows
5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for Solaris
5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for Windows
5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for HP-UX
5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for Linux
PK46781; 5.1.1.7: session.isnew() returning incorrect value
5.1.1.19: WebSphere Application Server V5.1.1 Cumulative Fix 19 for HP-UX



APAR status
Closed as program error.

Error description
A call to session.isNew() returning wrong value in the below
scenario:
1. An Enterprise application containing two web
applications(WebApp1
and WebApp2), and JSESSIONID cookie is named differently at web
application level for each of them.
2. Access a resource in WebApp1 that creates a new HTTPSession
3. Access a resource in WebApp2 that creates a new HTTPSession
in WebApp2 and includes a resource in WebApp1. The included
resource in WebApp1 makes a call to getSession(false). On the
returned session object, a call to isNew() is returning true,
instead of the right value false.
Local fix Problem summary
****************************************************************
* USERS AFFECTED: Users of http sessions in IBM WebSphere      *
*                 Application Server Version 5.1               *
****************************************************************
* PROBLEM DESCRIPTION: When an http a request is dispatched    *
*                      across two web applications, the        *
*                      isNew() method will return true         *
*                      incorrectly in some cases.              *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
This problem occurs when:
1. Two web modules have separate cookie names.
2. The sessions have already been created for each of the web
modules in a prior request.
3. When the request is dispatched (forward or include) from
one webapp to another, in the dispatched request the isNew()
call will return true erroneously.
Problem conclusion
This APAR introduces a fix to return false when isNew() is
called in the above scenario.
This APAR will be included in fixpack 5.1.1.16
Please refer to the recommended updates page for delivery
information:

http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

This problem does not exist in websphere application server's
version 6.0 and above releases.
Temporary fix Comments
APAR information
APAR number PK46781
Reported component name WEBSPHERE BASE
Reported component ID 5630A3600
Reported release 10W
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Special Attention NoSpecatt
Submitted date 2007-06-08
Closed date 2007-07-13
Last modified date 2007-07-23

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
MANAGER SESSION        

Publications Referenced

Fix information
Fixed component name WEBSPHERE BASE
Fixed component ID 5630A3600

Applicable component levels
R003 PSN    UP
R00A PSN    UP
R00H PSN    UP
R00I PSN    UP
R00P PSN    UP
R00S PSN    UP
R00W PSN    UP
R103 PSY    UP
R10A PSY    UP
R10H PSY    UP
R10I PSY    UP
R10P PSY    UP
R10S PSY    UP
R10W PSY    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 10W
Software edition:
Reference #: PK46781
IBM Group: Software Group
Modified date: Jul 23, 2007