堆栈内存溢出
  简体   繁体   English

如何使用 Spring Security 控制会话

[英]How to control sessions using Spring Security

 原文  2017-02-09 10:26:54       spring/ spring-security

问题描述

I need to realise "logged in system" policy which means only one session per login.我需要实现“登录系统”策略,这意味着每次登录只有一个会话。 But problem is that I have sessionCreationPolicy.STATELESS and sessions actually doesn't exist.但问题是我有sessionCreationPolicy.STATELESS并且会话实际上不存在。 So how can I solve this task?那么我该如何解决这个任务呢? What is the best approach?最好的方法是什么?

1 个解决方案

解决方案1
 1  2017-02-09 12:23:23

I don't think you have a problem here.我不认为你在这里有问题。 Since you're using STATELESS approach it means that Spring will not create any session: no security context, no cookies, every request must be authenticated on its own.由于您使用的是STATELESS方法,这意味着 Spring 不会创建任何会话:没有安全上下文,没有 cookie,每个请求都必须单独进行身份验证。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 春季安全性,如何使用户的所有会话期满 - spring security, how to expire all sessions of a user Spring Security会话如何工作? - How does Spring Security sessions work? Spring Security 注销和最大会话数 - Spring Security logout and Maximum sessions 具有不同会话类型的Spring安全性 - Spring security with different type of sessions 如何在没有会话的情况下使用 Spring Security? - How can I use Spring Security without sessions? Hazelcast +春季安全+分布式会话=如何使其工作? - Hazelcast + spring security + distributed sessions = how to make it work? 具有Spring Security的Spring Session创建两个会话 - Spring Session with Spring Security creates two sessions Spring Security,Spring MVC和Login Sessions - Spring Security, Spring MVC and Login Sessions Spring Security:如何为Ajax安全控制过滤器正确配置CSRF - Spring Security: How configure correctly CSRF for Ajax security control filter Spring Security并发控制 - Spring Security Concurrency Control
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM