From 7b7956c4cf664c412ce3e83dbfbba30e43daeb5e Mon Sep 17 00:00:00 2001
From: Paul-Christian Volkmer <paul-christian.volkmer@mni.thm.de>
Date: Mon, 19 Nov 2012 12:30:52 +0100
Subject: [PATCH] Never invalidate http session

This is a quick fix for HTTP session timeout which will result in some
strange behavior in client devices.

THIS MUST BE REVOVED if client JS code is able to re-authenticate from
local storage after session timeout.
---
 src/main/webapp/WEB-INF/web.xml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/main/webapp/WEB-INF/web.xml b/src/main/webapp/WEB-INF/web.xml
index 314db1edf..1b105c9f1 100644
--- a/src/main/webapp/WEB-INF/web.xml
+++ b/src/main/webapp/WEB-INF/web.xml
@@ -73,4 +73,8 @@
 		<error-code>500</error-code>
 		<location>/error/500.html</location>
 	</error-page>
-</web-app>
\ No newline at end of file
+
+	<session-config>
+		<session-timeout>0</session-timeout>
+	</session-config>
+</web-app>
-- 
GitLab