shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Les Hazlewood (JIRA)" <>
Subject [jira] [Updated] (SHIRO-60) Standalone environment - automatically create new session after expiration
Date Wed, 14 Sep 2011 18:01:12 GMT


Les Hazlewood updated SHIRO-60:

    Fix Version/s:     (was: 1.2.0)

> Standalone environment - automatically create new session after expiration
> --------------------------------------------------------------------------
>                 Key: SHIRO-60
>                 URL:
>             Project: Shiro
>          Issue Type: Improvement
>          Components: Session Management
>    Affects Versions: 1.0.0
>            Reporter: Les Hazlewood
>            Assignee: Les Hazlewood
>             Fix For: 1.3.0
> Per this thread:
> In a non-web environment, it would be nice if the SecurityManager would automatically/transparently
create a new Session for a subject if their existing session expires.  The web environment
already works this way.
> It would probably be best if there were a securityManager configuration attribute, say
'createNewSessionAfterExpiration' (or something similar) that would enable this feature.
> I'm thinking it should be enabled by default, as I assume the large majority of application
developers wouldn't want to catch InvalidSessionException in their code.  It could be disabled
by using the aforementioned config attribute.
> The DefaultWebSecurityManager could just piggyback the same logic, simplifying its code
(and its internal delegate WebSessionManager).

This message is automatically generated by JIRA.
For more information on JIRA, see:


View raw message