ok, the way to invalidate a session by sessionid should be following
add *HttpSessionEventPublisher*
add *ConcurrentSessionFilter* into filter chain
invoke method *SessionRegistryImpl.getSessionInformation(String
sessionId).expireNow()*
**
hi axel,
well, I don't think you can get session invalidated by manually calling *
SessionRegistryImpl.removeSessionInformation( sessionId )* method.
actually, this *SessionRegistryImpl *class is invoked when a *
HttpSessionEvent* takes place, and depends on the specific event(such as
sessioncrea
hello everyone
my problem is that i need to invalidate a session by sessionid
my answer is the following
when i call a method SessionRegistryImpl.removeSessionInformation( sessionId )
this cause that the other user who was logged in the system and have this
session id to loggoff??
thanks
<>
Agreed :)
And thanks!
On 8/23/07, Chris Berry <[EMAIL PROTECTED]> wrote:
> Done
> http://opensource.atlassian.com/projects/spring/browse/SEC-531
> Cheers,
> -- Chris
>
>
> On Aug 23, 2007, at 1:44 PM, Chris Berry wrote:
> Will do.
> It sure would be nice to incorporate this back into Acegi.
> IMHO
Done
http://opensource.atlassian.com/projects/spring/browse/SEC-531
Cheers,
-- Chris
On Aug 23, 2007, at 1:44 PM, Chris Berry wrote:
Will do.
It sure would be nice to incorporate this back into Acegi.
IMHO, REST will (or is ;-) supplant all other web service
methodologies. Acegi should suppor
Will do.
It sure would be nice to incorporate this back into Acegi.
IMHO, REST will (or is ;-) supplant all other web service
methodologies. Acegi should support it natively.
I need to soon do the same work for securing methods by Http Method
Cheers,
-- Chris
On Aug 23, 2007, at 1:16 PM, Ray K
Nice work Chris, any chance you could open some Jiras on that?
On 8/23/07, Chris Berry <[EMAIL PROTECTED]> wrote:
>
> I managed to answer this one myself, by trolling the Internet and reading
> the Acegi source. The final answer was to create a RESTfulDefinitionSource.
> I used Spring constructor
I managed to answer this one myself, by trolling the Internet and
reading the Acegi source. The final answer was to create a
RESTfulDefinitionSource. I used Spring constructor injection to load
in the "security patterns":
class="org.acegisecurity.intercept.web.FilterSecur
ityI
