Class SimpleRedirectInvalidSessionStrategy
- java.lang.Object
-
- org.springframework.security.web.session.SimpleRedirectInvalidSessionStrategy
-
- All Implemented Interfaces:
InvalidSessionStrategy
public final class SimpleRedirectInvalidSessionStrategy extends java.lang.Object implements InvalidSessionStrategy
Performs a redirect to a fixed URL when an invalid requested session is detected by theSessionManagementFilter
.
-
-
Constructor Summary
Constructors Constructor Description SimpleRedirectInvalidSessionStrategy(java.lang.String invalidSessionUrl)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description void
onInvalidSessionDetected(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
void
setCreateNewSession(boolean createNewSession)
Determines whether a new session should be created before redirecting (to avoid possible looping issues where the same session ID is sent with the redirected request).
-
-
-
Method Detail
-
onInvalidSessionDetected
public void onInvalidSessionDetected(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) throws java.io.IOException
- Specified by:
onInvalidSessionDetected
in interfaceInvalidSessionStrategy
- Throws:
java.io.IOException
-
setCreateNewSession
public void setCreateNewSession(boolean createNewSession)
Determines whether a new session should be created before redirecting (to avoid possible looping issues where the same session ID is sent with the redirected request). Alternatively, ensure that the configured URL does not pass through theSessionManagementFilter
.- Parameters:
createNewSession
- defaults totrue
.
-
-