shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From jitabc <ie...@qq.com>
Subject DefaultWebSecurityManager isHttpSessionMode may be error?
Date Thu, 09 Jun 2011 13:14:33 GMT
org.apache.shiro.web.mgt.DefaultWebSecurityManager.java


    /**
     * @since 1.0
     */
    public boolean isHttpSessionMode() {
        return this.sessionMode == null ||
this.sessionMode.equals(HTTP_SESSION_MODE);
    }
---------------------------------------------------------------------------------------
may be error,and i think this method should as bellow:


  public boolean isHttpSessionMode() {
        String sm = getSessionMode();
        return (sm!= null && sm.equals(HTTP_SESSION_MODE));
    }


--
View this message in context: http://shiro-developer.582600.n2.nabble.com/DefaultWebSecurityManager-isHttpSessionMode-may-be-error-tp6457753p6457753.html
Sent from the Shiro Developer mailing list archive at Nabble.com.

Mime
View raw message