Showing results for 
Search instead for 
Did you mean: 

AS Java Session ID encoding scheme?

Former Member
0 Kudos

We are in the process of implementing CRM 5.2 Web Client and are also implementing the B2B ICSS (Internet Customer Self Service) application for our customers and partners. My question is regarding the encoding of session IDs on AS Java. The CRM Web App uses Url64-encoded session IDs so all internal server information for the stateful application is not visible in the URL. The B2B ICSS application is on AS Java, and does not appear to use the same URL encoding scheme for the session ID.

Also, I should note we are using a Web Dispatcher for Reverse Proxy, Load Balancing, and URL Access Control.


http://[alias hostname]/icss_b2b/;jsessionid=([internal hostname]_CRD_00)ID0302800850DB00171010904548017364End;saplb_*=([internal hostname]_CRD_00)3491750?Standalone=yes&showmodulename=false


http://[alias hostname]/sap(bD1lbiZjPTIwMCZkPW1pbg==)/crm_logon/default.htm

I have referenced the below documentation on ABAP vs Java Session IDs. Does anyone know how/if the AS Java session information can be encoded in the URL so as to mask all internal information?

Session Identifiers:



Edited by: Stelling John on Nov 10, 2008 8:11 AM

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
0 Kudos

closing thread due to no replies