iTP Secure WebServer System Administrator's Guide (Version 7.0)

ManualsBrandsHP ManualsServerHP NonStop G-Series

271

272

273

274

275

276

277

278

279

280

Administering Session Identifiers for Anonymous

Sessions

iTP Secure WebServer System Administrator’s Guide—523346-012

11-8

Advanced Configuration Options

For example, the following directive sets the period cookies are valid to 1000

seconds for department 1, only. The default value of the CookiePersistence

attribute remains valid for all other departments:

SI_Department 1 -CookiePersistence 1000

Attributes set through the SI_Department directive apply to all regions in the

specified department unless overridden by a region-wide directive or reset by a

subsequent SI_Department directive.

•

By Region-Wide Attributes

You can override a default attribute value and a department-wide attribute value by

specifying the SI_Department command in the Region directive, which has the

following form

SI_Department departmentID -attribute value \

[-attribute value]...

For example, this Region directive specifies the period (1800 seconds) that

Session Identifiers are valid.

Region /info/* {

SI_Department 1 -AnonymousTicketExpiration 1800

}

Any SI_Department commands in a region must precede all Region directive

SI_RequireSI commands in the same region. Attributes set through the

SI_Department command apply only to requests for contents in the region in

which the attributes are specified. For all other requests, the default or department-

wide attributes apply.

Setting the Anonymous Ticket Expiration Time

By default, tickets generated by anonymous ticketing have an expiration value of six

hours. If a user presents a ticket that has expired, the content server generates a new

ticket using the same user ID so that users can be tracked across long sessions. You

can also track users across sessions if browser caching is enabled, as described in

Browser Caching on page 11-9.

You can specify a different expiration time for anonymous tickets by using the

-AnonymousTicketExpiration attribute, which has the form

-AnonymousTicketExpiration seconds

For example, this directive sets the expiration time of anonymous tickets to 1800

seconds (30 minutes):

SI_Default -AnonymousTicketExpiration 1800

You can use this attribute in an SI_Default or SI_Department directive or in an

SI_Department command in a Region directive.