]> WPIA git - gigi.git/blobdiff - src/org/cacert/gigi/pages/LoginPage.java
projects / gigi.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
ADD: prevent session stealing with the secure server.
[gigi.git] / src / org / cacert / gigi / pages / LoginPage.java
diff --git a/src/org/cacert/gigi/pages/LoginPage.java b/src/org/cacert/gigi/pages/LoginPage.java
index 8e920d092c0ea0fb9fcfbc08ff0d4b142738640e..7f34f071bb72581aae38ab9299abecf621f28d0c 100644 (file)
--- a/src/org/cacert/gigi/pages/LoginPage.java
+++ b/src/org/cacert/gigi/pages/LoginPage.java
@@ -115,6 +115,7 @@ public class LoginPage extends Page {
         GigiResultSet rs = ps.executeQuery();
         if (rs.next()) {
             loginSession(req, User.getById(rs.getInt(1)));
+            req.getSession().setAttribute(CERT_SERIAL, serial);
         }
         rs.close();
     }
WPIA Certificate Web Issuance Platform