I'm using a standalone Confluence-3.5.5 and on almost every action I do, login is required. This is a little bit boring :)
Can someone help me and indicate how to configure this ?
Thanks in advance
Found it !
There's an option in $CONFLUENCE_HOME/confluence/WEB-INF/classes/seraph-config.xml :
<!-- Invalidate session on login to prevent session fixation attack --> <init-param> <param-name>invalidate.session.on.login</param-name> <param-value>true</param-value> </init-param>
If you change the parameter value to false, it solves the problem :) We haven't this on our enterprise Confluence because we are using Crowd : the seraph config files are by-passed.
Hope this helps
I've experienced something similar before on restrictive company networks.
Is this a hosted environment? Do you have a particularly restrictive networking in your company? If so, maybe Privoxy may be able to help you track down problem calls that your network blocks.
Do you have a secure network gateway that is invalidating sessions?
Hi Community! I’m Elaine, Confluence Product Manager. You may have read my earlier post about page tree in space navigation sidebar. I'm excited to share another improvement that helps you organize ...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs