HeaderHttpSessionIdResolver (spring-session-docs 2.5.2 API)

java.lang.Object
- org.springframework.session.web.http.HeaderHttpSessionIdResolver

All Implemented Interfaces:

HttpSessionIdResolver
```
public class HeaderHttpSessionIdResolver
extends java.lang.Object
implements HttpSessionIdResolver
```
A HttpSessionIdResolver that uses a header to resolve the session id. Specifically, this implementation will allow specifying a header name using HeaderHttpSessionIdResolver(String). Convenience factory methods for creating instances that use common header names, such as "X-Auth-Token" and "Authentication-Info", are available as well.
When a session is created, the HTTP response will have a response header of the specified name and the value of the session id. For example:
```
 HTTP/1.1 200 OK
 X-Auth-Token: f81d4fae-7dec-11d0-a765-00a0c91e6bf6
 
```
The client should now include the session in each request by specifying the same header in their request. For example:
```
 GET /messages/ HTTP/1.1
 Host: example.com
 X-Auth-Token: f81d4fae-7dec-11d0-a765-00a0c91e6bf6
 
```
When the session is invalidated, the server will send an HTTP response that has the header name and a blank value. For example:
```
 HTTP/1.1 200 OK
 X-Auth-Token:
 
```
Since:

1.0

Constructor Summary

Constructors
Constructor and Description

HeaderHttpSessionIdResolver(java.lang.String headerName)
The name of the header to obtain the session id from.

Constructors
Constructor and Description
`HeaderHttpSessionIdResolver(java.lang.String headerName)` The name of the header to obtain the session id from.

Method Summary

All Methods Static Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`static HeaderHttpSessionIdResolver`	`authenticationInfo()` Convenience factory to create `HeaderHttpSessionIdResolver` that uses "Authentication-Info" header.
`void`	`expireSession(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)` Instruct the client to end the current session.
`java.util.List<java.lang.String>`	`resolveSessionIds(javax.servlet.http.HttpServletRequest request)` Resolve the session ids associated with the provided `HttpServletRequest`.
`void`	`setSessionId(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, java.lang.String sessionId)` Send the given session id to the client.
`static HeaderHttpSessionIdResolver`	`xAuthToken()` Convenience factory to create `HeaderHttpSessionIdResolver` that uses "X-Auth-Token" header.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - HeaderHttpSessionIdResolver
```
public HeaderHttpSessionIdResolver(java.lang.String headerName)
```
    The name of the header to obtain the session id from.
    
    Parameters:
    
    headerName - the name of the header to obtain the session id from.
- Method Detail
  - xAuthToken
```
public static HeaderHttpSessionIdResolver xAuthToken()
```
    Convenience factory to create HeaderHttpSessionIdResolver that uses "X-Auth-Token" header.
    
    Returns:
    
    the instance configured to use "X-Auth-Token" header
  - authenticationInfo
```
public static HeaderHttpSessionIdResolver authenticationInfo()
```
    Convenience factory to create HeaderHttpSessionIdResolver that uses "Authentication-Info" header.
    
    Returns:
    
    the instance configured to use "Authentication-Info" header
  - resolveSessionIds
```
public java.util.List<java.lang.String> resolveSessionIds(javax.servlet.http.HttpServletRequest request)
```
    Description copied from interface: HttpSessionIdResolver
    
    Resolve the session ids associated with the provided HttpServletRequest. For example, the session id might come from a cookie or a request header.
    
    Specified by:
    
    resolveSessionIds in interface HttpSessionIdResolver
    
    Parameters:
    
    request - the current request
    
    Returns:
    
    the session ids
  - setSessionId
```
public void setSessionId(javax.servlet.http.HttpServletRequest request,
                         javax.servlet.http.HttpServletResponse response,
                         java.lang.String sessionId)
```
    Description copied from interface: HttpSessionIdResolver
    
    Send the given session id to the client. This method is invoked when a new session is created and should inform a client what the new session id is. For example, it might create a new cookie with the session id in it or set an HTTP response header with the value of the new session id.
    
    Specified by:
    
    setSessionId in interface HttpSessionIdResolver
    
    Parameters:
    
    request - the current request
    
    response - the current response
    
    sessionId - the session id
  - expireSession
```
public void expireSession(javax.servlet.http.HttpServletRequest request,
                          javax.servlet.http.HttpServletResponse response)
```
    Description copied from interface: HttpSessionIdResolver
    
    Instruct the client to end the current session. This method is invoked when a session is invalidated and should inform a client that the session id is no longer valid. For example, it might remove a cookie with the session id in it or set an HTTP response header with an empty value indicating to the client to no longer submit that session id.
    
    Specified by:
    
    expireSession in interface HttpSessionIdResolver
    
    Parameters:
    
    request - the current request
    
    response - the current response

Class HeaderHttpSessionIdResolver

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

HeaderHttpSessionIdResolver

Method Detail

xAuthToken

authenticationInfo

resolveSessionIds

setSessionId

expireSession