Stack Overflow
Stack Overflow

Questions tagged [session-management]

Use tag when there are questions specific to session management in any domain (web, mobile, etc)

As per introduction of a Session:

Session management is the technique used by the web developer to make the stateless HTTP protocol support session state by making use of session variables.

For example, once a user has been authenticated to the web server, the user's next HTTP request (GET or POST) should not cause the web server to ask for the user's account and password again.

298 questions
1
vote
0 answers

Unable to authenticate with UsernameAndPasswordToken and set Cookie with Spring Security

I am building Spring Boot/ReactJS app and i have following issue in authenticating the user and generating JSSESSIONID. My SecurityConfig class looks like this: @Configuration @EnableWebSecurity public class SecurityConfig extends…
Petar Petrovic
  • 163
  • 1
  • 1
  • 7
1
vote
1 answer

Utilize same http session in javascript through many requests

In my backend I authenticate user once inlogging and then store the authenticated sessions at the server. Then after each user's request i check if the session associated with a request is stored as authenticated. The problem is that when I use…
Sinny
  • 167
  • 1
  • 10
1
vote
1 answer

Number of simultaneous requests that a Spring-based GemFire client can handle

We are using Spring Session management using Pivotal GemFire in our application. In production, when the load increases the application is not responding (completely hangs). We are getting an error like the client is blacklisted. We checked the…
Sreejith
  • 33
  • 3
1
vote
0 answers

Setting session timeout in spring boot application using google App Engine

I have a spring boot application which is being deployed in google app engine. I have a requirement of setting session time out on condition basis. I tried attaching a successHandler in spring security configuration as protected void…
Vijender Kumar
  • 1,285
  • 2
  • 17
  • 26
1
vote
2 answers

Application upgrade from monolithic to microservices

We have 13 years old monolithic java application using Struts 2 for handling UI calls JDBC/Spring JDBC Template for db calls Spring DI Tiles/JSP/Jquery for UI Two deployables are created out of this single source code. WAR for online…
pingo_bingo
  • 39
  • 1
1
vote
2 answers

Session is different if flash uploads photo to the aspx page

I have a aspx called user-photo-upload.aspx and another aspx called get-photo.aspx. I set the Session["PhotoId"] in the page_load method of user-photo-upload.aspx. If I visit the user-photo-upload.aspx through the browser normally, the session can…
Billy
  • 15,516
  • 28
  • 70
  • 101
1
vote
1 answer

When session should expire in Identity Server 4 with MVC client?

I am using MVC client with IdentityServer3.AccessTokenValidation and Identity Server 4 as my IDP app. I have added cookie timeout at below places, however seems like session never expires and doesn't automatically logout the user - In MVC client…
ravneet singh
  • 21
  • 1
  • 3
1
vote
0 answers

How to maintain session in android across different fragment/activity?

I have this code for session management during login using SharedPreferences. The code works perfectly during login but when i use it in another fragment/activity, it does not work anymore. I get the error "Attempt to invoke virtual method 'void…
ruatemem
  • 57
  • 2
  • 12
1
vote
1 answer

JSessionId changes after login and Angular 5 is sending new JSessionID with request and discarding the old jsessionid

I am new to Angular 5 and Spring MVC and I am trying to create the login functionality for my application. We are not using Spring Security as we are only using basic session management provided by the Spring MVC module. I am saving the…
ashutosh
  • 31
  • 5
1
vote
1 answer

Apache Tomee session Management with gemFire Integration

I am trying to do session management using tomcat modules in gemFire. Reference link we used is [https://gemfire.docs.pivotal.io/95/geode/tools_modules/http_session_mgmt/tomcat_installing_the_module.html]. Application server that we are using…
Sreejith
  • 33
  • 3
1
vote
0 answers

Security Issues with RESTful Authentication & Session Management

I'm trying to implement authentication and session management for a microservice. In order to do the process RESTfully, I understand that I'll need to use some kind of token-based authentication to avoid tracking client session data on the server.…
shinvu
  • 601
  • 2
  • 7
  • 23
1
vote
1 answer

Keycloak multiple sessions for the same username

I've recently configured SSO with Keycloak servlet adapter. The problem is that we have service-to-service communication, which goes with BASIC authentication. Previously, we were using JAAS authentication, therefore the S2S communication was…
Georgi
  • 189
  • 2
  • 12
1
vote
1 answer

Spring boot expiredURL not working

I have "Vaadin 10 with Spring Boot" application. I want to allow user to access application from one place at a time. So I used maximumSessions(1). Example, from Chrome browser I have logged in with user "XYZ". Now with the same user (i.e. "XYZ") I…
Harita Parmar
  • 75
  • 1
  • 1
  • 9
1
vote
0 answers

Session management, Concurrent Sessions, Spring Security, and Spring MVC application

I have a requirement where I need to develop a Login flow for an Enterprise application that is a Spring MVC application integrated with Spring Security. The requirement is I should be restricting the user to one session: Example: I have users two…
mohsyd
  • 11
  • 1
  • 4
1
vote
0 answers

In Single Page Application which is the best way to maintain user session?

I am developing an SPA using MERN technology stack. I want to maintain user session. Which are the best ways use session management and what information we need to store in client side? 1) Session storage 2) Local Storage 3) Cookie.
Anurag G
  • 272
  • 4
  • 16
1 2 3
19 20