Our customer doesn't want to have session tracking with cookies, so i tried to use tracking-mode URL set from the web.xml. This throws a ViewExpiredException on postback on my login page because the HttpSession is always null. Login is done via HttpServletRequest.login() in an action method which returns "Home.xhtml?faces-redirect=true".
I'm on Servlet 3.0, so as far as i understand the documentation everything should work.
Any ideas? Anything i'm still missing?
(I also asked about this problem on stackoverflow, but i guess this is the more appropriate place. For referecne: http://stackoverflow.com/questions/16812111/viewexpiredexception-with-tr...)