I'm using a standalone Confluence-3.5.5 and on almost every action I do, login is required. This is a little bit boring :)
Can someone help me and indicate how to configure this ?
Thanks in advance
Found it !
There's an option in $CONFLUENCE_HOME/confluence/WEB-INF/classes/seraph-config.xml :
<!-- Invalidate session on login to prevent session fixation attack --> <init-param> <param-name>invalidate.session.on.login</param-name> <param-value>true</param-value> </init-param>
If you change the parameter value to false, it solves the problem :) We haven't this on our enterprise Confluence because we are using Crowd : the seraph config files are by-passed.
Hope this helps
I've experienced something similar before on restrictive company networks.
Is this a hosted environment? Do you have a particularly restrictive networking in your company? If so, maybe Privoxy may be able to help you track down problem calls that your network blocks.
Do you have a secure network gateway that is invalidating sessions?
Hi my Community friends! For those who don't know me, I'm a product marketer on the Confluence Cloud team - nice to meet you! For those of you who do, you know that I've been all up in your Co...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs