Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id DB196200C33 for ; Sat, 11 Mar 2017 19:37:10 +0100 (CET) Received: by cust-asf.ponee.io (Postfix) id D9A24160B7B; Sat, 11 Mar 2017 18:37:10 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id AB2DC160B64 for ; Sat, 11 Mar 2017 19:37:09 +0100 (CET) Received: (qmail 5963 invoked by uid 500); 11 Mar 2017 18:37:08 -0000 Mailing-List: contact dev-help@ignite.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@ignite.apache.org Delivered-To: mailing list dev@ignite.apache.org Received: (qmail 5951 invoked by uid 99); 11 Mar 2017 18:37:08 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd3-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 11 Mar 2017 18:37:08 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd3-us-west.apache.org (ASF Mail Server at spamd3-us-west.apache.org) with ESMTP id 1FE9E186135 for ; Sat, 11 Mar 2017 18:37:08 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd3-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 1.18 X-Spam-Level: * X-Spam-Status: No, score=1.18 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, KAM_ASCII_DIVIDERS=0.8, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SORBS_SPAM=0.5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=disabled Authentication-Results: spamd3-us-west.apache.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mx1-lw-us.apache.org ([10.40.0.8]) by localhost (spamd3-us-west.apache.org [10.40.0.10]) (amavisd-new, port 10024) with ESMTP id olH_Uqfh7rfN for ; Sat, 11 Mar 2017 18:37:04 +0000 (UTC) Received: from mail-ot0-f179.google.com (mail-ot0-f179.google.com [74.125.82.179]) by mx1-lw-us.apache.org (ASF Mail Server at mx1-lw-us.apache.org) with ESMTPS id 6FE325F295 for ; Sat, 11 Mar 2017 18:37:04 +0000 (UTC) Received: by mail-ot0-f179.google.com with SMTP id o24so93595832otb.1 for ; Sat, 11 Mar 2017 10:37:04 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:content-transfer-encoding:mime-version:date:subject:message-id :references:in-reply-to:to; bh=vzQ1t7TOgwzNnkAjWXXE3kYyaUja7zOSXzrsh0nyajg=; b=bOjUghs4Gv0F3uKjEYfMRT3n8V1HJvWGKbH/+tGcs2cPofsDF0jflVpLSkQCkOsoyJ wrpp7ewjFN8up6C3RhF2wlLUkKMYp+8A4/im/2xJflkcfv/YxJhVI9ulPeVOUgwIuG8E 1cJXEagcpW7lvaOIQUD9BkEjK0Bo+LKcwWfj8E/LLvygHNAjGd7aRwKrU6Rug9aGcyUp AYsyBxkXwHY/SoMUOxBzuskI5DIlFnzPRxN1YfwYy/keDbSJ74TRwkQt18kGatNd/nxm ScCgyKbLoBE4p5tCbIWWViYY2vPpmV4lWQEEZ+x3BMM+kVODfpnfTZm+QIOonyUxONn3 GEEQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:content-transfer-encoding:mime-version:date :subject:message-id:references:in-reply-to:to; bh=vzQ1t7TOgwzNnkAjWXXE3kYyaUja7zOSXzrsh0nyajg=; b=uZK3SPyeF3CN+8u8dKmffzEJFXuVsVFDgY3U4A9PecVubmxOePEVWV1YdYSeXPLE63 9QQCtun/0ru2sTXih171fX0g7214cZh/oHtBFIIZ+J1s+mnQGJqm7gP9+KQRRwXSMYak DTvy2B6DFXVEv6nXLIdEiuHa/OjS0xOMbq/1UxQfUo7W9TBrQgW3wfx1T1qFnpFl6ws8 0bWGt/0ijzQDgBeL9MYym1fHGJWEDncUd0VGzHzWMPhIvmUS+DaauiCP+zgVVizTCvG7 fs2JRtCDxkARogX5jLNUCcz/ntNO5zy1zoPaMh8adOzCOCxELuDAsaibyC8Fhoh+0S6X rnWg== X-Gm-Message-State: AMke39mY2gK7WUaqldklGXhGdk06AhSoA2jfFxchI61udlg3R9+0lPU6kLFrAMxx7G4Neg== X-Received: by 10.157.49.47 with SMTP id e44mr12581923otc.129.1489256958083; Sat, 11 Mar 2017 10:29:18 -0800 (PST) Received: from [192.168.1.8] (cpe-66-25-10-62.tx.res.rr.com. [66.25.10.62]) by smtp.gmail.com with ESMTPSA id p47sm5839797otp.23.2017.03.11.10.29.17 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 11 Mar 2017 10:29:17 -0800 (PST) From: Rishi Yagnik Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (1.0) Date: Sat, 11 Mar 2017 12:29:15 -0600 Subject: Re: IGNITE-2741 - spring session design Message-Id: <8DEDB8FF-11F0-4E44-9B6C-93C7676C9BA3@gmail.com> References: In-Reply-To: To: dev@ignite.apache.org X-Mailer: iPhone Mail (14D27) archived-at: Sat, 11 Mar 2017 18:37:11 -0000 Hi Val,=20 Thanks looking forward for the fix.. Take Care, Rishi > On Mar 11, 2017, at 11:31 AM, Valentin Kulichenko wrote: >=20 > Hi Rishi, >=20 > I want to fix the bug first. It takes a bit longer than I thought, but I > should finish it over the weekend. >=20 > -Val >=20 >> On Fri, Mar 10, 2017 at 4:13 AM, Rishi Yagnik wro= te: >>=20 >> Hi Val, >>=20 >> Did you chance to look into session handling issue ? >>=20 >> Thanks, >>=20 >> On Mon, Mar 6, 2017 at 3:37 PM, Rishi Yagnik >> wrote: >>=20 >>> Hi Val, >>>=20 >>> Do you think I can test a fix in 1.9 RC releases ? How are you planning >> to >>> release a fix ? >>>=20 >>> Did you also look into problem where storing xsrf token in Ignite return= s >>> an exception and does not behave as expected ? >>>=20 >>> In SecurityConfig.java use HttpSessionCsrfTokenRepository with following= >>> code - >>>=20 >>> .csrfTokenRepository(csrfTokenRepository()) >>>=20 >>> private CsrfTokenRepository csrfTokenRepository() { >>> HttpSessionCsrfTokenRepository repository =3D new >> HttpSessionCsrfTokenRepository(); >>> repository.setHeaderName("X-XSRF-TOKEN"); >>> return repository; >>> } >>>=20 >>> Thank you for all your help, >>>=20 >>>=20 >>> On Mon, Mar 6, 2017 at 2:34 PM, Valentin Kulichenko < >>> valentin.kulichenko@gmail.com> wrote: >>>=20 >>>> Hi Rishi, >>>>=20 >>>> I got to the bottom of it. Basically, the session is replaced in Spring= >>>> filter, but caching happens based on the old version which doesn't have= >>>> security attributes. The fix is going to be very easy, I will do it >>>> tomorrow. >>>>=20 >>>> -Val >>>>=20 >>>> On Mon, Mar 6, 2017 at 7:34 PM, Rishi Yagnik >>>> wrote: >>>>=20 >>>>> Val, >>>>>=20 >>>>> Did you get chance to play around with the code ? >>>>>=20 >>>>> Thanks, >>>>>=20 >>>>> On Sun, Mar 5, 2017 at 7:25 PM, Rishi Yagnik >>>>> wrote: >>>>>=20 >>>>>> Val, >>>>>>=20 >>>>>> Adding a filter before csrf filter will invoke the custom ignite >>>> filter. >>>>>>=20 >>>>>> Declare a custom filter class extends it with websession filter >>>>>>=20 >>>>>> public class CustomWebSessionFilter extends WebSessionFilter { >>>>>>=20 >>>>>> private static boolean igniteInitialize =3D false >>>>>>=20 >>>>>> @Override public void doFilter(ServletRequest req, ServletResponse >>>> res, >>>>>> FilterChain chain) >>>>>> throws IOException, ServletException { >>>>>> if(!igniteInitialize) { >>>>>> super.init(new FilterConfig() { >>>>>> @Override >>>>>> public String getFilterName() { >>>>>> return "CustomWebSessionFilter"; >>>>>> } >>>>>>=20 >>>>>> @Override >>>>>> public ServletContext getServletContext() { >>>>>> return req.getServletContext(); >>>>>> } >>>>>>=20 >>>>>> @Override >>>>>> public String getInitParameter(String name) { >>>>>> return null; >>>>>> } >>>>>>=20 >>>>>> @Override >>>>>> public Enumeration getInitParameterNames() { >>>>>> return null; >>>>>> } >>>>>> }); >>>>>> igniteInitialize =3D true; >>>>>> } >>>>>> super.doFilter(req,res,chain); >>>>>> } >>>>>> } >>>>>>=20 >>>>>> And in SecurityConfig.java add following line to invoke filter >> before >>>>>> Ignite Web Session filter - >>>>>>=20 >>>>>> .addFilterBefore(new ArWebSessionFilter(), CsrfFilter.class) >>>>>>=20 >>>>>> Hope it helps.. >>>>>>=20 >>>>>> Thanks, >>>>>>=20 >>>>>> On Sun, Mar 5, 2017 at 1:28 PM, Valentin Kulichenko < >>>>>> valentin.kulichenko@gmail.com> wrote: >>>>>>=20 >>>>>>> Rishi, >>>>>>>=20 >>>>>>> Can you please share how you forced Ignite filter to be invoked >>>> before >>>>>>> security filter? >>>>>>>=20 >>>>>>> -Val >>>>>>>=20 >>>>>>> On Sun, Mar 5, 2017 at 11:20 AM, Rishi Yagnik < >> rishiyagnik@gmail.com >>>>>=20 >>>>>>> wrote: >>>>>>>=20 >>>>>>>> Hi Val, >>>>>>>>=20 >>>>>>>> Thanks for the response, we have executed ignite filter before >>>> spring >>>>>>>> security filter but somehow the ignite filter does not do the job >>>> of >>>>>>>> setting spring principle context. >>>>>>>>=20 >>>>>>>> As a result even though we have spring principle in session, >> spring >>>>>>> filter >>>>>>>> does not recognize it and sends us back to log in page. >>>>>>>>=20 >>>>>>>> I think there s some more work needed here to change the filter >> and >>>>> make >>>>>>>> it work with spring boot application. >>>>>>>>=20 >>>>>>>> Take Care, >>>>>>>> Rishi >>>>>>>>=20 >>>>>>>>> On Mar 5, 2017, at 10:16 AM, Valentin Kulichenko < >>>>>>>> valentin.kulichenko@gmail.com> wrote: >>>>>>>>>=20 >>>>>>>>> Hi Rishi, >>>>>>>>>=20 >>>>>>>>> I did some debugging. Apparently, the reason for this behavior >> is >>>>> that >>>>>>>>> Spring Security filter resides before Ignite's filter in the >>>> chain >>>>>>> list. >>>>>>>> I >>>>>>>>> think that eventually this should be fixed in the product, but >> in >>>>> the >>>>>>>>> meantime there must be a way to work around the problem by >>>>> controlling >>>>>>>> the >>>>>>>>> order. Do you know how this can be done in Spring Boot? >>>>>>>>>=20 >>>>>>>>> -Val >>>>>>>>>=20 >>>>>>>>>> On Tue, Feb 28, 2017 at 9:31 AM, Rishi Yagnik < >>>>> rishiyagnik@gmail.com >>>>>>>>=20 >>>>>>>> wrote: >>>>>>>>>>=20 >>>>>>>>>> Hi Val, >>>>>>>>>>=20 >>>>>>>>>> Sorry for pestering, thanks for all your help. >>>>>>>>>>=20 >>>>>>>>>> Rishi >>>>>>>>>>=20 >>>>>>>>>> On Mon, Feb 27, 2017 at 7:22 PM, Valentin Kulichenko < >>>>>>>>>> valentin.kulichenko@gmail.com> wrote: >>>>>>>>>>=20 >>>>>>>>>>> Hi Rishi, >>>>>>>>>>>=20 >>>>>>>>>>> Sorry, not yet. But this on my short list of TODOs, will try >> to >>>>>>> give an >>>>>>>>>>> update as soon as possible. >>>>>>>>>>>=20 >>>>>>>>>>> -Val >>>>>>>>>>>=20 >>>>>>>>>>> On Mon, Feb 27, 2017 at 7:47 AM, Rishi Yagnik < >>>>>>> rishiyagnik@gmail.com> >>>>>>>>>>> wrote: >>>>>>>>>>>=20 >>>>>>>>>>>> Hi Val, >>>>>>>>>>>>=20 >>>>>>>>>>>> any update on session replication issue ? >>>>>>>>>>>>=20 >>>>>>>>>>>> Thanks, >>>>>>>>>>>> Rishi >>>>>>>>>>>>=20 >>>>>>>>>>>> On Thu, Feb 23, 2017 at 8:07 AM, Rishi Yagnik < >>>>>>> rishiyagnik@gmail.com> >>>>>>>>>>>> wrote: >>>>>>>>>>>>=20 >>>>>>>>>>>>> Thanks Val for looking into it. >>>>>>>>>>>>>=20 >>>>>>>>>>>>> On Wed, Feb 22, 2017 at 9:32 PM, Valentin Kulichenko < >>>>>>>>>>>>> valentin.kulichenko@gmail.com> wrote: >>>>>>>>>>>>>=20 >>>>>>>>>>>>>> Hi Rishi, >>>>>>>>>>>>>>=20 >>>>>>>>>>>>>> Got it, I think I'm reproducing the issue. I'll take a >> look >>>> and >>>>>>> let >>>>>>>>>>> you >>>>>>>>>>>>>> know my findings soon. >>>>>>>>>>>>>>=20 >>>>>>>>>>>>>> -Val >>>>>>>>>>>>>>=20 >>>>>>>>>>>>>> On Tue, Feb 21, 2017 at 7:27 PM, Rishi Yagnik < >>>>>>>>>> rishiyagnik@gmail.com> >>>>>>>>>>>>>> wrote: >>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>> Hi Val, >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>> The issue will occur in cluster environment, please setup >>>> the >>>>>>>>>> spring >>>>>>>>>>>>>> boot >>>>>>>>>>>>>>> on 2 different host with LB (F5 OR Reverse proxy) in >> front >>>> and >>>>>>> try >>>>>>>>>>> to >>>>>>>>>>>>>>> login. >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>> In cluster environment, Spring security does not >> recognize >>>> the >>>>>>>>>>> session >>>>>>>>>>>>>> on >>>>>>>>>>>>>>> the host you are not logged in, as a result, spring >>>> security >>>>>>> will >>>>>>>>>>>>>> redirect >>>>>>>>>>>>>>> to login url however the correct behavior should be that >>>> user >>>>>>>>>> would >>>>>>>>>>>> stay >>>>>>>>>>>>>>> logged in with session replication. >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>> Do let me know if you need more information. >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>> Thanks, >>>>>>>>>>>>>>> Rishi >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>> On Tue, Feb 21, 2017 at 7:08 PM, Valentin Kulichenko < >>>>>>>>>>>>>>> valentin.kulichenko@gmail.com> wrote: >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>> Hi Rishi, >>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>> I was able to build and run the application. Can you >> give >>>>> some >>>>>>>>>>>>>>> description >>>>>>>>>>>>>>>> on what should I test to understand the issue? What >>>> exactly >>>>>>>>>> didn't >>>>>>>>>>>>>> work >>>>>>>>>>>>>>> for >>>>>>>>>>>>>>>> you? >>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>> -Val >>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>> On Wed, Feb 15, 2017 at 10:52 AM, Valentin Kulichenko < >>>>>>>>>>>>>>>> valentin.kulichenko@gmail.com> wrote: >>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>> Hi Rishi, >>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>> Thanks, I'll take a look. >>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>> -Val >>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>> On Wed, Feb 15, 2017 at 9:07 AM, Rishi Yagnik < >>>>>>>>>>>>>> rishiyagnik@gmail.com> >>>>>>>>>>>>>>>>> wrote: >>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> Hi Val, >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> As promised, please find attached code for spring boot >>>>>>>>>>>> integration >>>>>>>>>>>>>>> with >>>>>>>>>>>>>>>>>> spring security along with Ignite. >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> Some more information on project - >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> - It is a maven project ( Ignite 1.7.0, SB 1.4.3 ) >>>>>>>>>>>>>>>>>> - spring security integrated with boot project along >>>> with >>>>>>>>>>>> ignite >>>>>>>>>>>>>>>>>> - HttpSessionCookieCsrfTokenRepository does not >> work, >>>>>>>>>> gives >>>>>>>>>>>>>>>>>> intermediate errors on single instance so used >>>>>>>>>>>>>>>> CookieCsrfTokenRepository >>>>>>>>>>>>>>>>>> for CSRF token, again I think we need a fix here >> from >>>>>>>>>>> Ignite. >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> I cant reproduce this errors while I am running on >>>> single >>>>>>>>>>>> instance, >>>>>>>>>>>>>>> you >>>>>>>>>>>>>>>>>> need to run this app on 2 spring boot instance having >>>> proxy >>>>>>>>>> in >>>>>>>>>>>>>> front ( >>>>>>>>>>>>>>>> F5, >>>>>>>>>>>>>>>>>> OR any proxy ) with round robin fashion ( no sticky >>>> session >>>>>>>>>> on >>>>>>>>>>> F5 >>>>>>>>>>>>>> OR >>>>>>>>>>>>>>>>>> proxies ). >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> We were thinking with round robin the user session >> will >>>>>>>>>> active >>>>>>>>>>>>>> since >>>>>>>>>>>>>>> we >>>>>>>>>>>>>>>>>> used session replication on backend. >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> Do let me know if you need more information here. >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> Thanks, >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> Rishi >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> On Tue, Feb 14, 2017 at 9:57 PM, Rishi Yagnik < >>>>>>>>>>>>>> rishiyagnik@gmail.com> >>>>>>>>>>>>>>>>>> wrote: >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>> Val, >>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>> My SB sample project is ready however I have asked >> for >>>> an >>>>>>>>>>>>>> approval to >>>>>>>>>>>>>>>>>>> submit sample project to you, it would take day or >> two. >>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>> I will keep you posted. >>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>> Thanks for all your help, >>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>> On Tue, Feb 14, 2017 at 3:51 PM, Rishi Yagnik < >>>>>>>>>>>>>> rishiyagnik@gmail.com >>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>> wrote: >>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>> Let me build an example app for you and send it >>>> across to >>>>>>>>>>> you. >>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>> Thanks, >>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>> On Tue, Feb 14, 2017 at 3:28 PM, Valentin >> Kulichenko < >>>>>>>>>>>>>>>>>>>> valentin.kulichenko@gmail.com> wrote: >>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>> Rishi, >>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>> No I don't, and I think that's what we should start >>>>> with. >>>>>>>>>> I >>>>>>>>>>>>>> want to >>>>>>>>>>>>>>>>>>>>> understand a use case that is currently not >> supported >>>>> (if >>>>>>>>>>> any) >>>>>>>>>>>>>> and >>>>>>>>>>>>>>>> then >>>>>>>>>>>>>>>>>>>>> find the best solution. And I would like to reuse >>>>> existing >>>>>>>>>>>> code >>>>>>>>>>>>>> as >>>>>>>>>>>>>>>>>>>>> much as >>>>>>>>>>>>>>>>>>>>> possible. >>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>> Do you have any code that reproduces the problem >> you >>>> had >>>>>>>>>> and >>>>>>>>>>>> how >>>>>>>>>>>>>>> you >>>>>>>>>>>>>>>>>>>>> tried >>>>>>>>>>>>>>>>>>>>> to utilize current web session clustering? Can you >>>> share >>>>>>>>>> it >>>>>>>>>>>> with >>>>>>>>>>>>>>> us? >>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>> -Val >>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>> On Tue, Feb 14, 2017 at 11:28 AM, Rishi Yagnik < >>>>>>>>>>>>>>>> rishiyagnik@gmail.com> >>>>>>>>>>>>>>>>>>>>> wrote: >>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>> Hi Val, >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>> I am working on SB platform with spring security >>>> and we >>>>>>>>>>>> found >>>>>>>>>>>>>> out >>>>>>>>>>>>>>>>>>>>> that the >>>>>>>>>>>>>>>>>>>>>> web session filter ignite provides does not work >> for >>>>>>>>>>> session >>>>>>>>>>>>>>>>>>>>> management on >>>>>>>>>>>>>>>>>>>>>> 2 node spring boot cluster. >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>> Somehow, spring security filter kicks in result in >>>> some >>>>>>>>>>>> weird >>>>>>>>>>>>>>>> errors >>>>>>>>>>>>>>>>>>>>> with >>>>>>>>>>>>>>>>>>>>>> web session filter. >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>> So making compatible with spring security somehow, >>>> we >>>>>>>>>> need >>>>>>>>>>>> to >>>>>>>>>>>>>>> write >>>>>>>>>>>>>>>>>>>>>> implementation on spring session. >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>> Do you have any test cases that says web session >>>> filter >>>>>>>>>>>> would >>>>>>>>>>>>>>> work >>>>>>>>>>>>>>>>>>>>> with >>>>>>>>>>>>>>>>>>>>>> spring security on boot platform ? >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>> Thanks, >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>> On Tue, Feb 14, 2017 at 1:03 PM, Valentin >>>> Kulichenko < >>>>>>>>>>>>>>>>>>>>>> valentin.kulichenko@gmail.com> wrote: >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>> Hi Rishi, >>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>> Can you please take a look at web session >>>> clustering >>>>>>>>>>>> feature >>>>>>>>>>>>>>> [1] >>>>>>>>>>>>>>>>>>>>> provided >>>>>>>>>>>>>>>>>>>>>>> by Ignite? I'm looking at Spring Session docs and >>>> it >>>>>>>>>>> seems >>>>>>>>>>>>>> to >>>>>>>>>>>>>>> me >>>>>>>>>>>>>>>>>>>>> it does >>>>>>>>>>>>>>>>>>>>>>> exactly the same - replaces HttpSession with >> custom >>>>>>>>>>>>>>>> implementation >>>>>>>>>>>>>>>>>>>>> that >>>>>>>>>>>>>>>>>>>>>> has >>>>>>>>>>>>>>>>>>>>>>> a backend storage. If it doesn't provide any >>>>>>>>>> additional >>>>>>>>>>>> API >>>>>>>>>>>>>> or >>>>>>>>>>>>>>>>>>>>>>> functionality, I'm not sure I understand the >>>> benefit >>>>>>>>>> of >>>>>>>>>>>> this >>>>>>>>>>>>>>>>>>>>> feature. >>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>> Let me know if I'm missing something. >>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>> [1] https://apacheignite-mix. >>>>>>>>>>> readme.io/docs/web-session- >>>>>>>>>>>>>>>> clustering >>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>> -Val >>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>> On Mon, Feb 13, 2017 at 2:41 PM, Rishi Yagnik < >>>>>>>>>>>>>>>>>>>>> rishiyagnik@gmail.com> >>>>>>>>>>>>>>>>>>>>>>> wrote: >>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>>> I would like to discuss session replication / >> fail >>>>>>>>>>> over >>>>>>>>>>>>>>> design >>>>>>>>>>>>>>>> on >>>>>>>>>>>>>>>>>>>>>> spring >>>>>>>>>>>>>>>>>>>>>>>> boot platform and wanted to find what is the >> best >>>>>>>>>> out >>>>>>>>>>> to >>>>>>>>>>>>>> get >>>>>>>>>>>>>>>>>>>>> started >>>>>>>>>>>>>>>>>>>>>>> here ? >>>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>>> Possible approaches are as follows - >>>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>>> - Make use of Spring Session for session >>>>>>>>>>> replication >>>>>>>>>>>>>> and >>>>>>>>>>>>>>>> fail >>>>>>>>>>>>>>>>>>>>> over >>>>>>>>>>>>>>>>>>>>>>>> - Extend the web session filter and make it >> work >>>>>>>>>> on >>>>>>>>>>>>>> spring >>>>>>>>>>>>>>>>>>>>> boot >>>>>>>>>>>>>>>>>>>>>>>> application >>>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>>> I am thinking that best approach would be to get >>>>>>>>>>> started >>>>>>>>>>>>>> here >>>>>>>>>>>>>>>>>>>>> with >>>>>>>>>>>>>>>>>>>>>> spring >>>>>>>>>>>>>>>>>>>>>>>> session design however I am open for feedback >>>> here. >>>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>>>>>=20 >>>>>>>>>>>>>>=20 >>>>>>>>>>>>>=20 >>>>>>>>>>>>>=20 >>>>>>>>>>>>>=20 >>>>>>>>>>>>> -- >>>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>>>=20 >>>>>>>>>>>>=20 >>>>>>>>>>>>=20 >>>>>>>>>>>>=20 >>>>>>>>>>>> -- >>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>>=20 >>>>>>>>>>>=20 >>>>>>>>>>=20 >>>>>>>>>>=20 >>>>>>>>>>=20 >>>>>>>>>> -- >>>>>>>>>> Rishi Yagnik >>>>>>>>>>=20 >>>>>>>>=20 >>>>>>>=20 >>>>>>=20 >>>>>>=20 >>>>>>=20 >>>>>> -- >>>>>> Rishi Yagnik >>>>>>=20 >>>>>=20 >>>>>=20 >>>>>=20 >>>>> -- >>>>> Rishi Yagnik >>>>>=20 >>>>=20 >>>=20 >>>=20 >>>=20 >>> -- >>> Rishi Yagnik >>>=20 >>=20 >>=20 >>=20 >> -- >> Rishi Yagnik >>=20