mindol1004/spring-session
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,071 Commits 21 Branches 116 Tags
b98c5216b4f644e374fd6077a83b18c6e3322022
Commit Graph

82 Commits

Author SHA1 Message Date
Vedran Pavic
b98c5216b4 Update configuration classes to use proxyBeanMethods=false 
Resolves: #1345
 2019-05-09 18:10:57 +02:00
Spring Operator
0975d4d47e URL Cleanup 
This commit updates URLs to prefer the https protocol. Redirects are not followed to avoid accidentally expanding intentionally shortened URLs (i.e. if using a URL shortener).

# Fixed URLs

## Fixed Success
These URLs were switched to an https URL with a 2xx status. While the status was successful, your review is still recommended.

* http://www.apache.org/licenses/ with 1 occurrences migrated to:
  https://www.apache.org/licenses/ ([https](https://www.apache.org/licenses/) result 200).
* http://www.apache.org/licenses/LICENSE-2.0 with 269 occurrences migrated to:
  https://www.apache.org/licenses/LICENSE-2.0 ([https](https://www.apache.org/licenses/LICENSE-2.0) result 200).
* http://www.apache.org/licenses/LICENSE-2.0.html with 1 occurrences migrated to:
  https://www.apache.org/licenses/LICENSE-2.0.html ([https](https://www.apache.org/licenses/LICENSE-2.0.html) result 200).
 2019-03-14 20:39:41 -05:00
Vedran Pavic
0c0bfa4414 Remove special handling for Servlet 3.0 and below 
Closes: #1363
 2019-03-14 21:59:45 +01:00
Vedran Pavic
a4c39fde9f Polish 2018-12-26 20:16:32 +01:00
Roman Beskrovnyi
68f83b00eb Fix SessionRepositoryFilter Javadoc 2018-12-12 13:57:48 -06:00
Vedran Pavic
8a4872b919 Improve exception asserts 2018-11-26 10:02:40 +01:00
Vedran Pavic
3bfdb9be93 Polish contribution 
Resolves: #1243
 2018-11-02 22:28:34 +01:00
Josh Cummings
c8f3d1a1ec Commit Session on Include Dispatch 
The servlet spec disallows any writing of headers after an include has been issued.

This commit intercepts the include and commits the session, then
allowing the include to proceed.

See: #1243
 2018-11-02 22:28:34 +01:00
Vedran Pavic
717e16cb71 Ensure HttpServletRequest#getRequestedSessionId API is respected 
HttpSessionIdResolver supports resolving multiple requested session ids associated with the request - as a consequence, we need to validate the existence of requested session before returning the id. However, if no presented session ids do validate the null is returned, which violates the HttpServletRequest#getRequestedSessionId API.

This commit ensures that if no presented session ids are valid, we respect the HttpServletRequest#getRequestedSessionId API by returning first requested session id.

Resolves: #1229
 2018-10-26 19:55:37 +02:00
Vedran Pavic
49daa3a9c7 Polish 2018-09-26 14:16:02 +02:00
Vedran Pavic
3e1a22102d Ensure compatibility with Java 9 and 10 
Closes gh-1196
 2018-09-16 22:13:56 +02:00
Vedran Pavic
1181e52bb0 Upgrade spring-build-conventions to 0.0.18.RELEASE 2018-08-24 23:50:23 +02:00
Vedran Pavic
f65cee0a7b Upgrade dependencies 2018-08-20 06:31:10 +02:00
Vedran Pavic
3140bd06b2 Add FindByIndexNameSessionRepository#findByPrincipalName default method 
Closes gh-1158
 2018-08-17 08:04:09 +02:00
Vedran Pavic
268ba663e5 Remove SpringSessionWebSessionStore#storeSession 
Closes gh-1150
 2018-08-09 16:32:14 +02:00
Vedran Pavic
3f4873f0eb Simplify tests related to SameSite cookie directive support 
Closes gh-1147
 2018-08-03 23:20:55 +02:00
Johnny Lim
97e52de41b Make MapSession.originalId final 
Closes gh-1146
 2018-08-02 18:46:59 +02:00
Vedran Pavic
00465a6f00 Add support for SameSite cookie directive 
Closes gh-1005
 2018-07-30 02:13:57 +02:00
Vedran Pavic
ad35d7ca30 Add support for HttpSessionBindingListener 
Closes gh-1018
 2018-07-29 08:09:00 +02:00
Vedran Pavic
18e9ab4c0f Polish 2018-07-27 13:14:04 +02:00
Vedran Pavic
7123df8656 Remove MapSession#setOriginalId 
Closes gh-1100
 2018-07-25 22:03:19 +02:00
Vedran Pavic
db31527c8c Add logging for errors decoding Base64 cookies 
Closes gh-1117
 2018-07-24 23:37:52 +02:00
Vedran Pavic
3d2a742328 Use Spring Java Format Checkstyle 
Closes gh-1113
 2018-07-23 15:16:35 +02:00
Vedran Pavic
936fc853df Ensure Session#getAttributeNames implementations return a copy 
Currently, Session#getAttributeNames implementations, by delegating to MapSession, all return a session attribute map's key set. This causes ConcurrentModificationException when an attempt to modify session attributes is made while iterating over the returned attribute names.

Closes gh-1120
 2018-07-17 15:05:03 +02:00
Vedran Pavic
dba475c48f Invalidate session before clearing session store 
Closes gh-1114
 2018-07-13 10:50:49 +02:00
Vedran Pavic
8dac35cf73 Fix session event handling in HazelcastSessionRepository 
Previously, invoking HttpServletRequest#changeSessionId on session backed by HazelcastSessionRepository generated generated invalid session destroyed and session created events. This was due to use of IMap#remove and IMap#set when handling the change session id.

This commit improves change session id handling to prevent publishing invalid events by using IMap#delete instead of IMap#remove and keeping track of originally assigned session id.

Closes gh-1077
 2018-06-13 16:12:28 +02:00
Vedran Pavic
19b8583d65 Adapt to Spring Framework deprecations 
See gh-1092
 2018-06-13 05:59:50 +02:00
Vedran Pavic
f55b793185 Remove Servlet API version check from DefaultCookieSerializer 
Closes gh-1079
 2018-05-31 10:42:44 +02:00
Vedran Pavic
6d027900ee Fix caching of requested session in SessionRepositoryFilter 
Closes gh-1076
 2018-05-15 10:03:41 +02:00
Vedran Pavic
751375338c Optimize session resolution in SessionRepositoryFilter 
This commit optimizes SessionRepositoryFilter to avoid multiple retrievals of session from SessionRepository.

Closes gh-1048
 2018-05-04 21:26:35 +02:00
Vedran Pavic
941fdb46f2 Replace use of Test.expected with AssertJ 
See gh-1032
 2018-05-04 18:05:38 +02:00
Vedran Pavic
6f8359ba16 Fix lastAccessedTime handling in SpringSessionWebSessionStore 
This commit ensures lastAccessedTime is updated when session is retrieved, as per WebSessionStore API.

Closes gh-1039
 2018-04-19 12:11:16 +02:00
Vedran Pavic
a780ee0264 Replace use of ExpectedException rule with AssertJ 
Closes gh-1032
 2018-03-31 08:32:16 +02:00
Vedran Pavic
13c0e325b4 Adapt to Spring WebSocket configuration deprecations 
Closes gh-994
 2018-02-06 15:30:09 +01:00
Vedran Pavic
becee53dbf Restore CookieSerializer.CookieValue constructor visibility 
Closes gh-978
 2018-02-05 19:11:08 +01:00
Vedran Pavic
1ba434a357 Document ReactiveMapSessionRepository map requirements 
Closes gh-842
 2018-01-09 20:19:22 +01:00
Vedran Pavic
e364511c7e Polish contribution 
Closes gh-965
 2018-01-08 17:38:29 +01:00
Johnny Lim
79ccbe7066 Polish 
See gh-965
 2018-01-08 17:38:06 +01:00
Vedran Pavic
6188fe68b7 Improve session event handling 
This commit removes constructor that takes session id instead of session object for the entire `AbstractSessionEvent` hierarchy.

The ability to create `AbstractSessionEvent` instances with no underlying session object leads to NPE when interacting with `HttpSession` obtained from `HttpSessionEvent`.

See gh-499
Closes gh-939
 2017-11-27 22:21:40 +01:00
Vedran Pavic
f28ab07b9a Migrate SpringJUnit4ClassRunner -> SpringRunner 2017-11-20 08:08:00 +01:00
Vedran Pavic
fc4d2238bc Rename MapReactiveSessionRepository to ReactiveMapSessionRepository 
Closes gh-928
 2017-11-14 07:26:13 +01:00
Vedran Pavic
91d4a5bfca Add HeaderHttpSessionIdResolver factory methods for commonly used headers 
Closes gh-706
 2017-10-30 08:07:07 +01:00
Vedran Pavic
f8583bb02f Add missing @Override 2017-10-27 09:59:55 +02:00
Vedran Pavic
5df555cd53 Polish 2017-10-27 09:59:51 +02:00
Vedran Pavic
6f05c84aa7 Rename HttpSessionStrategy to HttpSessionIdResolver 
This commit harmonizes `HttpSessionStrategy` with Spring Framework's `WebSessionIdResolver` by renaming it to `WebSessionIdResolver`.
 2017-10-26 07:29:56 -05:00
Vedran Pavic
cd394bbe10 Align HttpSessionStrategy with WebSessionIdResolver 
This commit simplifies `HttpSessionStrategy` API by aligning it with Spring Framework's `WebSessionIdResolver`. As a part of this, support for managing multiple users' sessions has been removed.

Closes gh-275
Closes gh-362
 2017-10-26 07:29:56 -05:00
Vedran Pavic
00ede81665 Harmonize naming of reactive components 
Closes gh-897
 2017-10-24 07:36:25 +02:00
Rob Winch
df7ab9d99e Package tangles for Reactive Configuration 
Fixes gh-900
 2017-10-22 22:33:29 -05:00
Vedran Pavic
7d61c5496a Fix deprecation warnings 2017-10-20 21:18:31 +02:00
Vedran Pavic
99fb17a66b Adapt to Spring WebSession API changes 2017-09-27 11:52:04 +02:00