This post has NOT been accepted by the mailing list yet.
i have a question about jetty and Session Management configuration. We run a GWT Web-App which need an SessionID to save data on the Server-side. It works fine if the user as enabled cookies in his browser. The most browser don´t accept third-party cookies as default. I don´t like force the user to enable this feature. I need this because i like to embedded the in an iFrame, in this case the cookie is third-party. The result is that the GWT-App do not work in an iFrame.
My idea was to enable URL rewriting as fallback. If the browser accepts third-party cookies i want to use the Session-ID from the cookie, if not the jetty should rewrite the URL with the Session-ID as URL-Parameter.
First i try to disable the cookie in jetty-web.xml on my local system and in :