Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SessionAuthentication._session is not marked as transient #12309

Closed
janbartel opened this issue Sep 25, 2024 · 0 comments · Fixed by #12310
Closed

SessionAuthentication._session is not marked as transient #12309

janbartel opened this issue Sep 25, 2024 · 0 comments · Fixed by #12310
Assignees
@janbartel
Labels
Bug For general bugs on Jetty side

Comments

@janbartel
Copy link
Contributor

Jetty version(s)
jetty-12.0.x

Jetty Environment
core security

The org.eclipse.jetty.security.authentication.SessionAuthentication class has a HttpSession _session data member which must be marked as transient to prevent it being serialized. This keyword is missing.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@janbartel janbartel

Labels
Bug For general bugs on Jetty side
Projects
No open projects
Jetty 12.0.14
Status: ✅ Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Issue #12309 replaced transient keyword for SessionAuthentication.session jetty/jetty.project
1 participant
@janbartel