https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324355#M11356 <P>Using CMIS Workbench 0.10.0 with various bindings and cookies enabled, I see a "Login Success" entry in the Nuxeo audit trail for every CMIS operation performed. I expected to see only one for the initial login. Thoughts?</P> Sun, 25 Aug 2013 09:31:59 GMT rg1_ 2013-08-25T09:31:59Z https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324355#M11356 <P>Using CMIS Workbench 0.10.0 with various bindings and cookies enabled, I see a "Login Success" entry in the Nuxeo audit trail for every CMIS operation performed. I expected to see only one for the initial login. Thoughts?</P> Sun, 25 Aug 2013 09:31:59 GMT https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324355#M11356 rg1_ 2013-08-25T09:31:59Z https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324356#M11357 <P>Could you open a JIRA ticket?</P> Thu, 29 Aug 2013 19:08:39 GMT https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324356#M11357 Florent_Guillau 2013-08-29T19:08:39Z https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324357#M11358 <P>See [NXP-12358][1].</P> Thu, 29 Aug 2013 21:33:27 GMT https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324357#M11358 rg1_ 2013-08-29T21:33:27Z https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324358#M11359 <P>This is by design, the CMIS endpoint is not designated as stateful so does not generate a (needless) HTTP session which does not create a JSESSIONID cookie.</P> <P><STRONG>Edit</STRONG>: it's possible to make an endpoint use a stateful HTTP session and therefore a cookie through some config. To do that, the <CODE>&lt;authenticationPlugin&gt;</CODE> of the <CODE>authenticators</CODE> extension point defining the authentication for the given URL pattern must include <CODE>&lt;stateful&gt;true&lt;/stateful&gt;</CODE>. This is done for instance <A href="https://github.com/nuxeo/nuxeo-web-mobile/blob/master/nuxeo-web-mobile/nuxeo-web-mobile-dm/src/main/resources/OSGI-INF/web-mobile-authentification-chain-contrib.xml">here</A>. Compare this with the standard binding for the browser binding endpoint <A href="https://github.com/nuxeo/nuxeo-chemistry/blob/master/nuxeo-opencmis-bindings/src/main/resources/OSGI-INF/json-contrib.xml">here</A>.</P> Mon, 18 Nov 2013 18:05:07 GMT https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324358#M11359 Florent_Guillau 2013-11-18T18:05:07Z https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324359#M11360 <P>This seems to contradict the answer provided to [this question][1]. Please clarify.</P> Mon, 18 Nov 2013 22:26:03 GMT https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324359#M11360 rg1_ 2013-11-18T22:26:03Z https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324360#M11361 <P>Right. I updated the answer in the other question, and the above answer.</P> Wed, 27 Nov 2013 15:48:08 GMT https://connect.hyland.com/t5/nuxeo-forum/cmis-workbench-with-cookies-enabled-logs-into-nuxeo-every-time/m-p/324360#M11361 Florent_Guillau 2013-11-27T15:48:08Z