PQ56861: NEW SESSION ARE CREATED IN WAS 4.0 WHEN ANOTHER APP SERVER (WEBLOGIC) USES COOKIES WITH JSESSIONID

APAR status
Closed as program error.

Error description
First, access a websphere server from your browser, and get a
session assigned. Now from same browser, contact a weblogic
server (or other page, I would guess) that sets a cookie called
"ps_81content_PSJSESSIONID" (I think anything containing the
string JSESSIONID, or perhaps ending with it).Submit another
request to the websphere server.  The server will  issue a new
session object, changing the session cookie value.  All subseque
requests to the websphere server will result in a new
 session and session cookie being issued.
Local fix Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server developers      *
*                 using sessions.                              *
****************************************************************
* PROBLEM DESCRIPTION: Using cookies containing the word       *
*                      "JSESSIONID" causes session tracking    *
*                      to create a new session each time       *
*                      a new page is requested.                *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
WebSphere parses the cookie header field from left to right.
Upon locating the string "JSESSIONID" it tries to retrieve
the corresponding value for that cookie.  If the exact match
is not met on the first match, the cookie match is returned
as null or not found thus creating a new session with each
request.
Problem conclusion
Modified the algorithm for searching the cookie header
field for name/value pairs to search until an exact match
is found and not the first partial match. If a exact match is
not found, then a new session id will be issued.
Temporary fix Comments
APAR information
APAR number PQ56861
Reported component name WEBSPHERE AES N
Reported component ID 5630A2301
Reported release 400
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Submitted date 2002-01-18
Closed date 2002-01-23
Last modified date 2003-05-27

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
ENGINE          

Fix information
Fixed component name WEBSPHERE AES N
Fixed component ID 5630A2301

Applicable component levels
R400 PSY    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 400
Software edition:
Reference #: PQ56861
IBM Group: Software Group
Modified date: May 27, 2003