I'm using a standalone Confluence-3.5.5 and on almost every action I do, login is required. This is a little bit boring :)
Can someone help me and indicate how to configure this ?
Thanks in advance
Found it !
There's an option in $CONFLUENCE_HOME/confluence/WEB-INF/classes/seraph-config.xml :
<!-- Invalidate session on login to prevent session fixation attack --> <init-param> <param-name>invalidate.session.on.login</param-name> <param-value>true</param-value> </init-param>
If you change the parameter value to false, it solves the problem :) We haven't this on our enterprise Confluence because we are using Crowd : the seraph config files are by-passed.
Hope this helps
I've experienced something similar before on restrictive company networks.
Is this a hosted environment? Do you have a particularly restrictive networking in your company? If so, maybe Privoxy may be able to help you track down problem calls that your network blocks.
Do you have a secure network gateway that is invalidating sessions?
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG