Do not invalidate http session if there is an invalid security key (#11335)

Change-Id: I55c3bc83abc33d8bfd9bb45d84fb992236174be2
author: Artur Signell <artur@vaadin.com> 2013-03-14 16:23:29 +0200
committer: Artur Signell <artur@vaadin.com> 2013-03-18 13:41:07 +0200
commit: 149d69514e0cb406967602c106e05e5f8a571b69 (patch)
tree: a82c8a8d88e6e74b694ac32621dceaba9a3f2d18 /server/src
parent: b202c155c302fce17ce51706197920637179aef7 (diff)
download: vaadin-framework-149d69514e0cb406967602c106e05e5f8a571b69.tar.gz
vaadin-framework-149d69514e0cb406967602c106e05e5f8a571b69.zip
1 files changed, 0 insertions, 6 deletions
diff --git a/server/src/com/vaadin/server/VaadinServlet.java b/server/src/com/vaadin/server/VaadinServlet.java
index 4fde870f74..11a7439c66 100644
--- a/server/src/com/vaadin/server/VaadinServlet.java
+++ b/server/src/com/vaadin/server/VaadinServlet.java
@@ -709,12 +709,6 @@ public class VaadinServlet extends HttpServlet implements Constants {
                         ci.getCommunicationErrorCaption(),
                         ci.getCommunicationErrorMessage(),
                         INVALID_SECURITY_KEY_MSG, ci.getCommunicationErrorURL());
-                /*
-                 * Invalidate session. Portal integration will fail otherwise
-                 * since the session is not created by the portal.
-                 */
-                request.getSession().invalidate();
-
             } else if (requestType == RequestType.HEARTBEAT) {
                 response.sendError(HttpServletResponse.SC_FORBIDDEN,
                         "Forbidden");
author	Artur Signell <artur@vaadin.com>	2013-03-14 16:23:29 +0200
committer	Artur Signell <artur@vaadin.com>	2013-03-18 13:41:07 +0200
commit	149d69514e0cb406967602c106e05e5f8a571b69 (patch)
tree	a82c8a8d88e6e74b694ac32621dceaba9a3f2d18 /server/src
parent	b202c155c302fce17ce51706197920637179aef7 (diff)
download	vaadin-framework-149d69514e0cb406967602c106e05e5f8a571b69.tar.gz vaadin-framework-149d69514e0cb406967602c106e05e5f8a571b69.zip