Simplify project structure

- harmonize module and directory names
- optimize Gradle settings
- remove unused Grails sample

Resolves: #1447

spring-session-samples/spring-session-sample-boot-websocket/spring-session-sample-boot-websocket.gradle

@@ -0,0 +1,30 @@
+apply plugin: 'io.spring.convention.spring-sample-boot'
+
+dependencies {
+	compile project(':spring-session-data-redis')
+	compile "org.springframework.boot:spring-boot-starter-web"
+	compile "org.springframework.boot:spring-boot-starter-thymeleaf"
+	compile "org.springframework.boot:spring-boot-starter-security"
+	compile "org.springframework.boot:spring-boot-starter-data-jpa"
+	compile "org.springframework.boot:spring-boot-starter-data-redis"
+	compile "org.springframework.boot:spring-boot-starter-websocket"
+	compile "org.springframework.boot:spring-boot-devtools"
+	compile "org.springframework:spring-websocket"
+	compile "org.springframework.security:spring-security-messaging"
+	compile "org.springframework.security:spring-security-data"
+	compile "nz.net.ultraq.thymeleaf:thymeleaf-layout-dialect"
+	compile "org.webjars:bootstrap"
+	compile "org.webjars:html5shiv"
+	compile "org.webjars:knockout"
+	compile "org.webjars:sockjs-client"
+	compile "org.webjars:stomp-websocket"
+	compile "org.webjars:webjars-locator-core"
+	compile "com.h2database:h2"
+
+	testCompile "org.springframework.boot:spring-boot-starter-test"
+	testCompile "org.springframework.security:spring-security-test"
+	testCompile "org.junit.jupiter:junit-jupiter-api"
+	testRuntimeOnly "org.junit.jupiter:junit-jupiter-engine"
+
+	integrationTestCompile "org.testcontainers:testcontainers"
+}

spring-session-samples/spring-session-sample-boot-websocket/src/integration-test/java/sample/ApplicationTests.java

@@ -0,0 +1,96 @@
+/*
+ * Copyright 2014-2019 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample;
+
+import java.util.ArrayList;
+import java.util.List;
+import java.util.concurrent.ExecutionException;
+
+import org.junit.jupiter.api.Test;
+import org.junit.jupiter.api.extension.ExtendWith;
+import org.testcontainers.containers.GenericContainer;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.boot.test.context.SpringBootTest.WebEnvironment;
+import org.springframework.boot.test.context.TestConfiguration;
+import org.springframework.context.annotation.Bean;
+import org.springframework.data.redis.connection.lettuce.LettuceConnectionFactory;
+import org.springframework.test.context.junit.jupiter.SpringExtension;
+import org.springframework.util.concurrent.ListenableFuture;
+import org.springframework.web.socket.TextMessage;
+import org.springframework.web.socket.WebSocketHandler;
+import org.springframework.web.socket.WebSocketSession;
+import org.springframework.web.socket.client.standard.StandardWebSocketClient;
+import org.springframework.web.socket.sockjs.client.RestTemplateXhrTransport;
+import org.springframework.web.socket.sockjs.client.SockJsClient;
+import org.springframework.web.socket.sockjs.client.Transport;
+import org.springframework.web.socket.sockjs.client.WebSocketTransport;
+
+import static org.assertj.core.api.Assertions.assertThatExceptionOfType;
+
+/**
+ * @author Rob Winch
+ * @author Vedran Pavic
+ */
+@ExtendWith(SpringExtension.class)
+@SpringBootTest(webEnvironment = WebEnvironment.RANDOM_PORT)
+public class ApplicationTests {
+
+	private static final String DOCKER_IMAGE = "redis:5.0.5";
+
+	@Value("${local.server.port}")
+	private String port;
+
+	@Autowired
+	private WebSocketHandler webSocketHandler;
+
+	@Test
+	public void run() {
+		List<Transport> transports = new ArrayList<>(2);
+		transports.add(new WebSocketTransport(new StandardWebSocketClient()));
+		transports.add(new RestTemplateXhrTransport());
+
+		SockJsClient sockJsClient = new SockJsClient(transports);
+		ListenableFuture<WebSocketSession> wsSession = sockJsClient.doHandshake(
+				this.webSocketHandler, "ws://localhost:" + this.port + "/sockjs");
+
+		assertThatExceptionOfType(ExecutionException.class)
+				.isThrownBy(() -> wsSession.get().sendMessage(new TextMessage("a")));
+	}
+
+	@TestConfiguration
+	static class Config {
+
+		@Bean
+		public GenericContainer redisContainer() {
+			GenericContainer redisContainer = new GenericContainer(DOCKER_IMAGE)
+					.withExposedPorts(6379);
+			redisContainer.start();
+			return redisContainer;
+		}
+
+		@Bean
+		public LettuceConnectionFactory redisConnectionFactory() {
+			return new LettuceConnectionFactory(redisContainer().getContainerIpAddress(),
+					redisContainer().getFirstMappedPort());
+		}
+
+	}
+
+}

spring-session-samples/spring-session-sample-boot-websocket/src/integration-test/resources/testcontainers.properties

@@ -0,0 +1 @@
+ryuk.container.timeout=120

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/Application.java

@@ -0,0 +1,31 @@
+/*
+ * Copyright 2014-2017 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+/**
+ * @author Rob Winch
+ */
+@SpringBootApplication
+public class Application {
+
+	public static void main(String[] args) {
+		SpringApplication.run(Application.class, args);
+	}
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/config/WebMvcConfig.java

@@ -0,0 +1,31 @@
+/*
+ * Copyright 2014-2017 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.config;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.servlet.config.annotation.ViewControllerRegistry;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+
+@Configuration
+public class WebMvcConfig implements WebMvcConfigurer {
+
+	@Override
+	public void addViewControllers(ViewControllerRegistry registry) {
+		registry.addViewController("/").setViewName("index");
+	}
+
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/config/WebSecurityConfig.java

@@ -0,0 +1,65 @@
+/*
+ * Copyright 2014-2018 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.config;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.autoconfigure.security.servlet.PathRequest;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
+import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.builders.WebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+
+@Configuration
+@EnableGlobalMethodSecurity(prePostEnabled = true)
+public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
+
+	// @formatter:off
+	@Autowired
+	public void configureGlobal(AuthenticationManagerBuilder auth,
+			UserDetailsService userDetailsService) throws Exception {
+		auth
+			.userDetailsService(userDetailsService)
+				.passwordEncoder(new BCryptPasswordEncoder());
+	}
+	// @formatter:on
+
+	// @formatter:off
+	@Override
+	public void configure(WebSecurity web) {
+		web
+			.ignoring().requestMatchers(PathRequest.toH2Console());
+	}
+	// @formatter:on
+
+	// @formatter:off
+	@Override
+	protected void configure(HttpSecurity http) throws Exception {
+		http
+			.authorizeRequests()
+				.requestMatchers(PathRequest.toStaticResources().atCommonLocations()).permitAll()
+				.anyRequest().authenticated()
+				.and()
+			.formLogin()
+				.permitAll();
+	}
+	// @formatter:on
+
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/config/WebSocketConfig.java

@@ -0,0 +1,45 @@
+/*
+ * Copyright 2014-2017 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.config;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.messaging.simp.config.MessageBrokerRegistry;
+import org.springframework.scheduling.annotation.EnableScheduling;
+import org.springframework.session.Session;
+import org.springframework.session.web.socket.config.annotation.AbstractSessionWebSocketMessageBrokerConfigurer;
+import org.springframework.web.socket.config.annotation.EnableWebSocketMessageBroker;
+import org.springframework.web.socket.config.annotation.StompEndpointRegistry;
+
+// tag::class[]
+@Configuration
+@EnableScheduling
+@EnableWebSocketMessageBroker
+public class WebSocketConfig
+		extends AbstractSessionWebSocketMessageBrokerConfigurer<Session> { // <1>
+
+	@Override
+	protected void configureStompEndpoints(StompEndpointRegistry registry) { // <2>
+		registry.addEndpoint("/messages").withSockJS();
+	}
+
+	@Override
+	public void configureMessageBroker(MessageBrokerRegistry registry) {
+		registry.enableSimpleBroker("/queue/", "/topic/");
+		registry.setApplicationDestinationPrefixes("/app");
+	}
+}
+// end::class[]

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/config/WebSocketHandlersConfig.java

@@ -0,0 +1,50 @@
+/*
+ * Copyright 2014-2017 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.config;
+
+import sample.data.ActiveWebSocketUserRepository;
+import sample.websocket.WebSocketConnectHandler;
+import sample.websocket.WebSocketDisconnectHandler;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.messaging.simp.SimpMessageSendingOperations;
+import org.springframework.session.Session;
+
+/**
+ * These handlers are separated from WebSocketConfig because they are specific to this
+ * application and do not demonstrate a typical Spring Session setup.
+ *
+ * @author Rob Winch
+ */
+@Configuration
+public class WebSocketHandlersConfig<S extends Session> {
+
+	@Bean
+	public WebSocketConnectHandler<S> webSocketConnectHandler(
+			SimpMessageSendingOperations messagingTemplate,
+			ActiveWebSocketUserRepository repository) {
+		return new WebSocketConnectHandler<>(messagingTemplate, repository);
+	}
+
+	@Bean
+	public WebSocketDisconnectHandler<S> webSocketDisconnectHandler(
+			SimpMessageSendingOperations messagingTemplate,
+			ActiveWebSocketUserRepository repository) {
+		return new WebSocketDisconnectHandler<>(messagingTemplate, repository);
+	}
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/config/WebSocketSecurityConfig.java

@@ -0,0 +1,39 @@
+/*
+ * Copyright 2014-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.config;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry;
+import org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer;
+
+/**
+ * @author Rob Winch
+ */
+@Configuration
+public class WebSocketSecurityConfig
+		extends AbstractSecurityWebSocketMessageBrokerConfigurer {
+
+	// @formatter:off
+	@Override
+	protected void configureInbound(MessageSecurityMetadataSourceRegistry messages) {
+		messages
+			.simpMessageDestMatchers("/queue/**", "/topic/**").denyAll()
+			.simpSubscribeDestMatchers("/queue/**/*-user*", "/topic/**/*-user*").denyAll()
+			.anyMessage().authenticated();
+	}
+	// @formatter:on
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/data/ActiveWebSocketUser.java

@@ -0,0 +1,59 @@
+/*
+ * Copyright 2014-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.data;
+
+import java.util.Calendar;
+
+import javax.persistence.Entity;
+import javax.persistence.Id;
+
+@Entity
+public class ActiveWebSocketUser {
+	@Id
+	private String id;
+
+	private String username;
+
+	private Calendar connectionTime;
+
+	public ActiveWebSocketUser() {
+	}
+
+	public ActiveWebSocketUser(String id, String username, Calendar connectionTime) {
+		super();
+		this.id = id;
+		this.username = username;
+		this.connectionTime = connectionTime;
+	}
+
+	public String getUsername() {
+		return this.username;
+	}
+
+	public void setUsername(String username) {
+		this.username = username;
+	}
+
+	public Calendar getConnectionTime() {
+		return this.connectionTime;
+	}
+
+	public void setConnectionTime(Calendar connectionTime) {
+		this.connectionTime = connectionTime;
+	}
+
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/data/ActiveWebSocketUserRepository.java

@@ -0,0 +1,29 @@
+/*
+ * Copyright 2014-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.data;
+
+import java.util.List;
+
+import org.springframework.data.jpa.repository.Query;
+import org.springframework.data.repository.CrudRepository;
+
+public interface ActiveWebSocketUserRepository
+		extends CrudRepository<ActiveWebSocketUser, String> {
+
+	@Query("select DISTINCT(u.username) from ActiveWebSocketUser u where u.username != ?#{principal?.username}")
+	List<String> findAllActiveUsers();
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/data/InstantMessage.java

@@ -0,0 +1,62 @@
+/*
+ * Copyright 2014-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.data;
+
+import java.util.Calendar;
+
+public class InstantMessage {
+	private String to;
+
+	private String from;
+
+	private String message;
+
+	private Calendar created = Calendar.getInstance();
+
+	public String getTo() {
+		return this.to;
+	}
+
+	public void setTo(String to) {
+		this.to = to;
+	}
+
+	public String getFrom() {
+		return this.from;
+	}
+
+	public void setFrom(String from) {
+		this.from = from;
+	}
+
+	public String getMessage() {
+		return this.message;
+	}
+
+	public void setMessage(String message) {
+		this.message = message;
+	}
+
+	public Calendar getCreated() {
+		return this.created;
+	}
+
+	public void setCreated(Calendar created) {
+		this.created = created;
+	}
+
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/data/User.java

@@ -0,0 +1,114 @@
+/*
+ * Copyright 2014-2017 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.data;
+
+import java.io.Serializable;
+
+import javax.persistence.Column;
+import javax.persistence.Entity;
+import javax.persistence.GeneratedValue;
+import javax.persistence.GenerationType;
+import javax.persistence.Id;
+import javax.validation.constraints.Email;
+import javax.validation.constraints.NotEmpty;
+
+import org.springframework.security.crypto.password.PasswordEncoder;
+
+/**
+ * Represents a user in our system.
+ *
+ * <p>
+ * In a real system use {@link PasswordEncoder} to ensure the password is secured
+ * properly. This demonstration does not address this due to time restrictions.
+ * </p>
+ *
+ * @author Rob Winch
+ */
+@Entity
+public class User implements Serializable {
+
+	@Id
+	@GeneratedValue(strategy = GenerationType.AUTO)
+	private Long id;
+
+	@NotEmpty(message = "First name is required.")
+	private String firstName;
+
+	@NotEmpty(message = "Last name is required.")
+	private String lastName;
+
+	@Email(message = "Please provide a valid email address.")
+	@NotEmpty(message = "Email is required.")
+	@Column(unique = true, nullable = false)
+	private String email;
+
+	@NotEmpty(message = "Password is required.")
+	private String password;
+
+	public User() {
+	}
+
+	public User(User user) {
+		this.id = user.id;
+		this.firstName = user.firstName;
+		this.lastName = user.lastName;
+		this.email = user.email;
+		this.password = user.password;
+	}
+
+	public String getPassword() {
+		return this.password;
+	}
+
+	public void setPassword(String password) {
+		this.password = password;
+	}
+
+	public Long getId() {
+		return this.id;
+	}
+
+	public void setId(Long id) {
+		this.id = id;
+	}
+
+	public String getFirstName() {
+		return this.firstName;
+	}
+
+	public void setFirstName(String firstName) {
+		this.firstName = firstName;
+	}
+
+	public String getLastName() {
+		return this.lastName;
+	}
+
+	public void setLastName(String lastName) {
+		this.lastName = lastName;
+	}
+
+	public String getEmail() {
+		return this.email;
+	}
+
+	public void setEmail(String email) {
+		this.email = email;
+	}
+
+	private static final long serialVersionUID = 2738859149330833739L;
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/data/UserRepository.java

@@ -0,0 +1,30 @@
+/*
+ * Copyright 2014-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.data;
+
+import org.springframework.data.repository.CrudRepository;
+
+/**
+ * Allows managing {@link User} instances.
+ *
+ * @author Rob Winch
+ *
+ */
+public interface UserRepository extends CrudRepository<User, Long> {
+
+	User findByEmail(String email);
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/mvc/CsrfController.java

@@ -0,0 +1,30 @@
+/*
+ * Copyright 2014-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.mvc;
+
+import org.springframework.security.web.csrf.CsrfToken;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+@RestController
+public class CsrfController {
+
+	@RequestMapping("/csrf")
+	public CsrfToken csrf(CsrfToken token) {
+		return token;
+	}
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/mvc/MessageController.java

@@ -0,0 +1,62 @@
+/*
+ * Copyright 2014-2017 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.mvc;
+
+import java.util.List;
+
+import sample.data.ActiveWebSocketUserRepository;
+import sample.data.InstantMessage;
+import sample.data.User;
+import sample.security.CurrentUser;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.messaging.Message;
+import org.springframework.messaging.handler.annotation.MessageMapping;
+import org.springframework.messaging.simp.SimpMessageSendingOperations;
+import org.springframework.messaging.simp.annotation.SubscribeMapping;
+import org.springframework.stereotype.Controller;
+
+/**
+ * Controller for managing {@link Message} instances.
+ *
+ * @author Rob Winch
+ *
+ */
+@Controller
+public class MessageController {
+	private SimpMessageSendingOperations messagingTemplate;
+	private ActiveWebSocketUserRepository activeUserRepository;
+
+	@Autowired
+	public MessageController(ActiveWebSocketUserRepository activeUserRepository,
+			SimpMessageSendingOperations messagingTemplate) {
+		this.activeUserRepository = activeUserRepository;
+		this.messagingTemplate = messagingTemplate;
+	}
+
+	@MessageMapping("/im")
+	public void im(InstantMessage im, @CurrentUser User currentUser) {
+		im.setFrom(currentUser.getEmail());
+		this.messagingTemplate.convertAndSendToUser(im.getTo(), "/queue/messages", im);
+		this.messagingTemplate.convertAndSendToUser(im.getFrom(), "/queue/messages", im);
+	}
+
+	@SubscribeMapping("/users")
+	public List<String> subscribeMessages() throws Exception {
+		return this.activeUserRepository.findAllActiveUsers();
+	}
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/security/CurrentUser.java

@@ -0,0 +1,49 @@
+/*
+ * Copyright 2014-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.security;
+
+import java.lang.annotation.Documented;
+import java.lang.annotation.ElementType;
+import java.lang.annotation.Retention;
+import java.lang.annotation.RetentionPolicy;
+import java.lang.annotation.Target;
+
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.annotation.AuthenticationPrincipal;
+import org.springframework.security.core.context.SecurityContextHolder;
+
+/**
+ * Annotate Spring MVC method arguments with this annotation to indicate you wish to
+ * specify the argument with the value of the current
+ * {@link Authentication#getPrincipal()} found on the {@link SecurityContextHolder}.
+ *
+ * <p>
+ * Creating your own annotation that uses {@link AuthenticationPrincipal} as a meta
+ * annotation creates a layer of indirection between your code and Spring Security's. For
+ * simplicity, you could instead use the {@link AuthenticationPrincipal} directly.
+ * </p>
+ *
+ * @author Rob Winch
+ *
+ */
+@Target(ElementType.PARAMETER)
+@Retention(RetentionPolicy.RUNTIME)
+@Documented
+@AuthenticationPrincipal
+public @interface CurrentUser {
+
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/security/UserRepositoryUserDetailsService.java

@@ -0,0 +1,100 @@
+/*
+ * Copyright 2014-2018 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.security;
+
+import java.util.Collection;
+
+import sample.data.User;
+import sample.data.UserRepository;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.authority.AuthorityUtils;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.core.userdetails.UsernameNotFoundException;
+import org.springframework.stereotype.Service;
+
+/**
+ * @author Rob Winch
+ *
+ */
+@Service
+public class UserRepositoryUserDetailsService implements UserDetailsService {
+	private final UserRepository userRepository;
+
+	@Autowired
+	public UserRepositoryUserDetailsService(UserRepository userRepository) {
+		this.userRepository = userRepository;
+	}
+
+	/*
+	 * (non-Javadoc)
+	 *
+	 * @see
+	 * org.springframework.security.core.userdetails.UserDetailsService#loadUserByUsername
+	 * (java.lang.String)
+	 */
+	@Override
+	public UserDetails loadUserByUsername(String username)
+			throws UsernameNotFoundException {
+		User user = this.userRepository.findByEmail(username);
+		if (user == null) {
+			throw new UsernameNotFoundException("Could not find user " + username);
+		}
+		return new CustomUserDetails(user);
+	}
+
+	private static final class CustomUserDetails extends User implements UserDetails {
+
+		private CustomUserDetails(User user) {
+			super(user);
+		}
+
+		@Override
+		public Collection<? extends GrantedAuthority> getAuthorities() {
+			return AuthorityUtils.createAuthorityList("ROLE_USER");
+		}
+
+		@Override
+		public String getUsername() {
+			return getEmail();
+		}
+
+		@Override
+		public boolean isAccountNonExpired() {
+			return true;
+		}
+
+		@Override
+		public boolean isAccountNonLocked() {
+			return true;
+		}
+
+		@Override
+		public boolean isCredentialsNonExpired() {
+			return true;
+		}
+
+		@Override
+		public boolean isEnabled() {
+			return true;
+		}
+
+		private static final long serialVersionUID = 5639683223516504866L;
+	}
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/websocket/WebSocketConnectHandler.java

@@ -0,0 +1,57 @@
+/*
+ * Copyright 2014-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.websocket;
+
+import java.security.Principal;
+import java.util.Arrays;
+import java.util.Calendar;
+
+import sample.data.ActiveWebSocketUser;
+import sample.data.ActiveWebSocketUserRepository;
+
+import org.springframework.context.ApplicationListener;
+import org.springframework.messaging.MessageHeaders;
+import org.springframework.messaging.simp.SimpMessageHeaderAccessor;
+import org.springframework.messaging.simp.SimpMessageSendingOperations;
+import org.springframework.web.socket.messaging.SessionConnectEvent;
+
+public class WebSocketConnectHandler<S>
+		implements ApplicationListener<SessionConnectEvent> {
+	private ActiveWebSocketUserRepository repository;
+	private SimpMessageSendingOperations messagingTemplate;
+
+	public WebSocketConnectHandler(SimpMessageSendingOperations messagingTemplate,
+			ActiveWebSocketUserRepository repository) {
+		super();
+		this.messagingTemplate = messagingTemplate;
+		this.repository = repository;
+	}
+
+	@Override
+	public void onApplicationEvent(SessionConnectEvent event) {
+		MessageHeaders headers = event.getMessage().getHeaders();
+		Principal user = SimpMessageHeaderAccessor.getUser(headers);
+		if (user == null) {
+			return;
+		}
+		String id = SimpMessageHeaderAccessor.getSessionId(headers);
+		this.repository.save(
+				new ActiveWebSocketUser(id, user.getName(), Calendar.getInstance()));
+		this.messagingTemplate.convertAndSend("/topic/friends/signin",
+				Arrays.asList(user.getName()));
+	}
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/java/sample/websocket/WebSocketDisconnectHandler.java

@@ -0,0 +1,51 @@
+/*
+ * Copyright 2014-2018 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package sample.websocket;
+
+import java.util.Arrays;
+
+import sample.data.ActiveWebSocketUserRepository;
+
+import org.springframework.context.ApplicationListener;
+import org.springframework.messaging.simp.SimpMessageSendingOperations;
+import org.springframework.web.socket.messaging.SessionDisconnectEvent;
+
+public class WebSocketDisconnectHandler<S>
+		implements ApplicationListener<SessionDisconnectEvent> {
+	private ActiveWebSocketUserRepository repository;
+	private SimpMessageSendingOperations messagingTemplate;
+
+	public WebSocketDisconnectHandler(SimpMessageSendingOperations messagingTemplate,
+			ActiveWebSocketUserRepository repository) {
+		super();
+		this.messagingTemplate = messagingTemplate;
+		this.repository = repository;
+	}
+
+	@Override
+	public void onApplicationEvent(SessionDisconnectEvent event) {
+		String id = event.getSessionId();
+		if (id == null) {
+			return;
+		}
+		this.repository.findById(id).ifPresent((user) -> {
+			this.repository.deleteById(id);
+			this.messagingTemplate.convertAndSend("/topic/friends/signout",
+					Arrays.asList(user.getUsername()));
+		});
+	}
+}

spring-session-samples/spring-session-sample-boot-websocket/src/main/resources/application.properties

@@ -0,0 +1,2 @@
+#server.servlet.session.timeout=1m
+spring.h2.console.enabled=true

spring-session-samples/spring-session-sample-boot-websocket/src/main/resources/data.sql

@@ -0,0 +1,5 @@
+insert into user(id,email,password,first_name,last_name) values (0,'rob','password','Rob','Winch');
+insert into user(id,email,password,first_name,last_name) values (1,'luke','password','Luke','Taylor');
+insert into user(id,email,password,first_name,last_name) values (2,'eve','password','Luke','Taylor');
+
+update user set password = '$2a$10$FBAKClV1zBIOOC9XMXf3AO8RoGXYVYsfvUdoLxGkd/BnXEn4tqT3u';

spring-session-samples/spring-session-sample-boot-websocket/src/main/resources/static/js/message.js

@@ -0,0 +1,152 @@
+
+function ApplicationModel(stompClient) {
+	var self = this;
+
+	self.friends = ko.observableArray();
+	self.username = ko.observable();
+	self.conversation = ko.observable(new ImConversationModel(stompClient,this.username));
+	self.notifications = ko.observableArray();
+	self.csrfToken = ko.computed(function() {
+		return JSON.parse($.ajax({
+			type: 'GET',
+			url: 'csrf',
+			dataType: 'json',
+			success: function() { },
+			data: {},
+			async: false
+		}).responseText);
+	}, this);
+
+	self.connect = function() {
+		var headers = {};
+		var csrf = self.csrfToken();
+		headers[csrf.headerName] = csrf.token;
+		stompClient.connect(headers, function(frame) {
+
+			console.log('Connected ' + frame);
+			self.username(frame.headers['user-name']);
+
+//      self.friendSignin({"username": "luke"});
+
+			stompClient.subscribe("/user/queue/errors", function(message) {
+					self.pushNotification("Error " + message.body);
+			});
+			stompClient.subscribe("/app/users", function(message) {
+					var friends = JSON.parse(message.body);
+
+					for(var i=0;i<friends.length;i++) {
+							self.friendSignin({"username": friends[i]});
+					}
+			});
+			stompClient.subscribe("/topic/friends/signin", function(message) {
+					var friends = JSON.parse(message.body);
+
+					for(var i=0;i<friends.length;i++) {
+							self.friendSignin(new ImFriend({"username": friends[i]}));
+					}
+			});
+			stompClient.subscribe("/topic/friends/signout", function(message) {
+					var friends = JSON.parse(message.body);
+
+					for(var i=0;i<friends.length;i++) {
+							self.friendSignout(new ImFriend({"username": friends[i]}));
+					}
+			});
+			stompClient.subscribe("/user/queue/messages", function(message) {
+					self.conversation().receiveMessage(JSON.parse(message.body));
+			});
+		}, function(error) {
+			self.pushNotification(error)
+			console.log("STOMP protocol error " + error);
+		});
+	}
+
+	self.pushNotification = function(text) {
+		self.notifications.push({notification: text});
+		if (self.notifications().length > 5) {
+			self.notifications.shift();
+		}
+	}
+
+	self.logout = function() {
+		stompClient.disconnect();
+		window.location.href = "../logout.html";
+	}
+
+	self.friendSignin = function(friend) {
+		self.friends.push(friend);
+	}
+
+	self.friendSignout = function(friend) {
+		var r = self.friends.remove(
+			function(item) {
+				item.username == friend.username
+			}
+		);
+		self.friends(r);
+	}
+}
+
+function ImFriend(data) {
+	var self = this;
+
+	self.username = data.username;
+}
+
+function ImConversationModel(stompClient,from) {
+	var self = this;
+	self.stompClient = stompClient;
+	self.from = from;
+	self.to = ko.observable(new ImFriend('null'));
+	self.draft = ko.observable('')
+
+	self.messages = ko.observableArray();
+
+	self.receiveMessage = function(message) {
+		var elem = $('#chat');
+		var isFromSelf = self.from() == message.from;
+		var isFromTo = self.to().username == message.from;
+		if(!(isFromTo || isFromSelf)) {
+				self.chat(new ImFriend({"username":message.from}))
+		}
+
+		var atBottom = (elem[0].scrollHeight - elem.scrollTop() == elem.outerHeight());
+
+		self.messages.push(new ImModel(message));
+
+		if (atBottom)
+				elem.scrollTop(elem[0].scrollHeight);
+	};
+
+	self.chat = function(to) {
+		self.to(to);
+		self.draft('');
+		self.messages.removeAll()
+		$('#trade-dialog').modal();
+	}
+
+	self.send = function() {
+		var data = {
+			"created" : new Date(),
+			"from" : self.from(),
+			"to" : self.to().username,
+			"message" : self.draft()
+		};
+		var destination = "/app/im"; // /queue/messages-user1
+		stompClient.send(destination, {}, JSON.stringify(data));
+		self.draft('');
+	}
+};
+
+function ImModel(data) {
+	var self = this;
+
+	self.created = new Date(data.created);
+	self.to = data.to;
+	self.message = data.message;
+	self.from = data.from;
+	self.messageFormatted = ko.computed(function() {
+			return self.created.getHours() + ":" + self.created.getMinutes() + ":" + self.created.getSeconds() + " - " + self.from + " - " + self.message;
+	})
+};
+

spring-session-samples/spring-session-sample-boot-websocket/src/main/resources/templates/index.html

@@ -0,0 +1,74 @@
+<html xmlns:th="https://www.thymeleaf.org" xmlns:layout="https://github.com/ultraq/thymeleaf-layout-dialect" layout:decorate="~{layout}">
+<head>
+	<title>View All</title>
+</head>
+<body>
+	<div layout:fragment="content">
+		<div class="container">
+		  <div id="heading" class="masthead">
+			<h3 class="muted">Chat Application</h3>
+		  </div>
+		  <div id="main-content">
+			<table class="table table-striped">
+			  <thead>
+				<tr>
+				  <th>User</th>
+				  <th></th>
+				</tr>
+			  </thead>
+			  <tbody data-bind="foreach: friends()">
+				<tr>
+				  <td data-bind="text: username"></td>
+				  <td class="trade-buttons">
+					<button class="btn btn-primary" data-bind="click: $root.conversation().chat">Chat</button>
+				  </td>
+				</tr>
+			  </tbody>
+			</table>
+
+		  <div id="trade-dialog" class="modal hide fade" tabindex="-1">
+			<div class="modal-body">
+			  <div>Chat with <span data-bind="text: conversation().to().username"></span></div>
+			  <div id="chat" style="height: 5em;max-height: 200px;overflow:scroll" data-bind="foreach: conversation().messages()">
+				<div data-bind="text: messageFormatted"></div>
+			  </div>
+			  <form class="form-horizontal" data-bind="submit: conversation().send">
+				<textarea data-bind="value: conversation().draft"></textarea>
+				<button class="btn btn-primary" type="submit">Send</button>
+			  </form>
+			</div>
+		</div>
+			<div class="alert alert-warning">
+			  <h5>Notifications</h5>
+			  <ul data-bind="foreach: notifications">
+				<li data-bind="text: notification"></li>
+			  </ul>
+			</div>
+		  </div>
+		</div>
+
+
+	<!-- 3rd party -->
+	<script th:src="@{/webjars/jquery/jquery.min.js}" src="/webjars/jquery/jquery.min.js"></script>
+	<script th:src="@{/webjars/bootstrap/js/bootstrap.min.js}" src="/webjars/bootstrap/js/bootstrap.min.js"></script>
+	<script th:src="@{/webjars/knockout/knockout.js}" src="/webjars/knockout/knockout.js"></script>
+	<script th:src="@{/webjars/sockjs-client/sockjs.min.js}" src="/webjars/sockjs-client/sockjs.min.js"></script>
+	<script th:src="@{/webjars/stomp-websocket/stomp.min.js}" src="/webjars/stomp-websocket/stomp.min.js"></script>
+
+	<!-- application -->
+	<script th:src="@{/js/message.js}" src="../static/js/message.js"></script>
+	<script type="text/javascript">
+	  (function() {
+		var socket = new SockJS('/messages');
+		var stompClient = Stomp.over(socket);
+
+		var appModel = new ApplicationModel(stompClient);
+		ko.applyBindings(appModel);
+
+		appModel.connect();
+
+	  })();
+	</script>
+	</div>
+</body>
+</html>

spring-session-samples/spring-session-sample-boot-websocket/src/main/resources/templates/layout.html

@@ -0,0 +1,124 @@
+<!DOCTYPE html SYSTEM "https://www.thymeleaf.org/dtd/xhtml1-strict-thymeleaf-spring4-3.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+			xmlns:th="https://www.thymeleaf.org"
+			xmlns:layout="https://github.com/ultraq/thymeleaf-layout-dialect">
+	<head>
+		<title layout:title-pattern="$LAYOUT_TITLE - $CONTENT_TITLE">Spring Session Sample</title>
+		<link rel="icon" type="image/x-icon" th:href="@{/favicon.ico}" href="../static/favicon.ico"/>
+		<link th:href="@{/webjars/bootstrap/css/bootstrap.min.css}" href="/webjars/bootstrap/css/bootstrap.min.css" rel="stylesheet"></link>
+		<style type="text/css">
+			/* Sticky footer styles
+			-------------------------------------------------- */
+
+			html,
+			body {
+				height: 100%;
+				/* The html and body elements cannot have any padding or margin. */
+			}
+
+			/* Wrapper for page content to push down footer */
+			#wrap {
+				min-height: 100%;
+				height: auto !important;
+				height: 100%;
+				/* Negative indent footer by it's height */
+				margin: 0 auto -60px;
+			}
+
+			/* Set the fixed height of the footer here */
+			#push,
+			#footer {
+				height: 60px;
+			}
+			#footer {
+				background-color: #f5f5f5;
+			}
+
+			/* Lastly, apply responsive CSS fixes as necessary */
+			@media (max-width: 767px) {
+				#footer {
+					margin-left: -20px;
+					margin-right: -20px;
+					padding-left: 20px;
+					padding-right: 20px;
+				}
+			}
+
+
+
+			/* Custom page CSS
+			-------------------------------------------------- */
+			/* Not required for template or sticky footer method. */
+
+			.container {
+				width: auto;
+				max-width: 680px;
+			}
+			.container .credit {
+				margin: 20px 0;
+				text-align: center;
+			}
+			a {
+					color: green;
+			}
+			.navbar-form {
+				margin-left: 1em;
+			}
+		</style>
+		<link th:href="@{/webjars/bootstrap/css/bootstrap-responsive.min.css}" href="/webjars/bootstrap/css/bootstrap-responsive.min.css" rel="stylesheet"></link>
+
+		<!-- HTML5 shim, for IE6-8 support of HTML5 elements -->
+		<!--[if lt IE 9]>
+			<script th:src="@{/webjars/html5shiv/html5shiv.min.js}" src="/webjars/html5shiv/html5shiv.min.js"></script>
+		<![endif]-->
+	</head>
+
+
+	<body>
+		<div id="wrap">
+			<div class="navbar navbar-inverse navbar-static-top">
+				<div class="navbar-inner">
+					<div class="container">
+						<a class="brand" th:href="@{/}"><img th:src="@{/images/logo.png}" alt="Spring Security Sample"/></a>
+
+<div class="nav-collapse collapse"
+		th:with="currentUser=${#httpServletRequest.userPrincipal?.principal}">
+	<div th:if="${currentUser != null}">
+			<form class="navbar-form pull-right" th:action="@{/logout}" method="post">
+					<input type="submit" value="Log out" />
+			</form>
+			<p id="un" class="navbar-text pull-right" th:text="${currentUser.username}">
+				sample_user
+			</p>
+	</div>
+	<ul class="nav">
+		<li><a th:href="@{/}">IM</a></li>
+		<li><a th:href="@{/h2-console/}">H2</a></li>
+	</ul>
+</div>
+
+				</div>
+			</div>
+		</div>
+			<!-- Begin page content -->
+			<div class="container">
+				<div class="alert alert-success"
+							th:if="${globalMessage}"
+							th:text="${globalMessage}">
+						Some Success message
+				</div>
+				<div layout:fragment="content">
+						Fake content
+				</div>
+			</div>
+
+			<div id="push"><!--  --></div>
+		</div>
+
+		<div id="footer">
+			<div class="container">
+				<p class="muted credit">Visit the <a href="https://projects.spring.io/spring-session/">Spring Session</a> site for more <a href="https://github.com/spring-projects/spring-session/tree/master/samples">samples</a>.</p>
+			</div>
+		</div>
+	</body>
+</html>