Spring Security教程(14)---- Logout和SessionManager
来源:互联网 发布:知乎怎么关注更多话题 编辑:程序博客网 时间:2024/06/11 00:47
Logout的配置很简单,只需要在http中加入下面的配置就可以了
- <sec:logout invalidate-session="true" logout-url="/logout"
- logout-success-url="/login.jsp" />
logout-url logout地址
logout-success-url logout成功后要跳转的地址
Session管理中最简单的配置方法是
- <sec:session-management invalid-session-url="/login.jsp" />
配置同一事件,只能有一个用户登录系统。
网上有的例子是这样配置的
- <sec:session-management invalid-session-url="/login.jsp" >
- <sec:concurrency-control error-if-maximum-exceeded="true"
- max-sessions="1" expired-url="/login.jsp"/>
- </sec:session-management>
在3.2版本中需要这样配置
首先在web.xml中加入一下配置
- <listener>
- <listener-class>org.springframework.security.web.session.HttpSessionEventPublisher</listener-class>
- </listener>
- <sec:http access-decision-manager-ref="accessDecisionManager"
- entry-point-ref="authenticationEntryPoint">
- <sec:access-denied-handler ref="accessDeniedHandler"/>
- <sec:logout invalidate-session="true" logout-url="/logout"
- logout-success-url="/login.jsp" />
- <sec:session-management session-authentication-strategy-ref="concurrentSessionControlStrategy" />
- <sec:remember-me
- authentication-success-handler-ref="authenticationSuccessHandler"
- data-source-ref="dataSource"
- user-service-ref="userDetailService"
- />
- <sec:custom-filter ref="filterSecurityInterceptor" before="FILTER_SECURITY_INTERCEPTOR"/>
- <sec:custom-filter ref="captchaAuthenticaionFilter" position="FORM_LOGIN_FILTER"/>
- <sec:custom-filter ref="concurrencyFilter" position="CONCURRENT_SESSION_FILTER"/>
- </sec:http>
- <bean id="captchaAuthenticaionFilter" class="com.zrhis.system.security.CaptchaAuthenticationFilter">
- <property name="authenticationManager" ref="authenticationManager" />
- <property name="authenticationFailureHandler" ref="authenticationFailureHandler" />
- <property name="authenticationSuccessHandler" ref="authenticationSuccessHandler" />
- <property name="filterProcessesUrl" value="/login.do" />
- <property name="sessionAuthenticationStrategy" ref="concurrentSessionControlStrategy" />
- </bean>
- <bean id="authenticationSuccessHandler" class="com.zrhis.system.security.SavedRequestLoginSuccessHandler">
- <property name="defaultTargetUrl" value="/index.jsp" />
- <property name="forwardToDestination" value="true" />
- <property name="alwaysUseDefaultTargetUrl" value="false" />
- </bean>
- <bean id="authenticationFailureHandler" class="org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler">
- <property name="defaultFailureUrl" value="/login.jsp" />
- </bean>
- <bean id="authenticationEntryPoint" class="org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint">
- <property name="loginFormUrl" value="/login.jsp" />
- </bean>
- <bean id="concurrencyFilter" class="org.springframework.security.web.session.ConcurrentSessionFilter">
- <constructor-arg name="sessionRegistry" ref="sessionRegistry" />
- <constructor-arg name="expiredUrl" value="/sessionOut.jsp" />
- </bean>
- <bean id="concurrentSessionControlStrategy"
- class="org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy">
- <constructor-arg name="sessionRegistry" ref="sessionRegistry" />
- <property name="maximumSessions" value="1"></property>
- </bean>
- <bean id="sessionRegistry" class="org.springframework.security.core.session.SessionRegistryImpl" />
0 0
- Spring Security教程(14)---- Logout和SessionManager
- Spring Security教程(14)---- Logout和SessionManager
- Spring Security教程(14)---- Logout和SessionManager
- Spring Security教程(14)---- Logout和SessionManager
- Spring Security Logout
- spring security logout
- spring security logout(spring security登出示例)
- spring security 的 logout 功能
- Spring Security Logout 404 问题
- spring security 的logout功能
- Spring Security-/logout 退出404
- Spring Security(10)——退出登录logout
- Spring Security(10)——退出登录logout
- Spring Security(10)——退出登录logout
- Spring Security(10)——退出登录logout
- Spring Security(10)——退出登录logout
- 10. Spring Security 退出登录logout
- Spring Security——退出登录logout
- ThinkPHP学习(二)理清ThinkPHP的目录结构及访问规则,创建第一个控制器
- 稀疏表示与人脸识别、人脸表情识别实验
- vc中字符串到UTF-8编码转换函数
- Linux expect
- for,foreach,iterator的用法和区别
- Spring Security教程(14)---- Logout和SessionManager
- [操作系统设置]设置使用空白密码进行远程登录
- 面向对象与原型【37】---原型的弊端(组合构造模式+原型模式)
- 我对线程条件变量的初步探究
- KMP算法分析
- UVa 10300 - Ecological Premium
- 实战 Groovy: for each 剖析
- java设计原则---开闭原则
- java hashcode() 和equals()详解 以及set不能重复问题