Interface LoginToHttpSessionBinder
public interface LoginToHttpSessionBinder
Maintains an association of Unity's
LoginSession
s with HttpSession
s.
The main purpose is to invalidate the latter when Unity session is expired.
The implementation also takes care about memory consumption: whenever a HttpSession
is expired
it is removed from the registry.
Thread safe.
- Author:
- K. Benedyczak
-
Field Summary
Modifier and TypeFieldDescriptionstatic final String
static final String
Under this key theLoginSession
id is stored in the HTTP session. -
Method Summary
Modifier and TypeMethodDescriptionvoid
bindHttpSession
(jakarta.servlet.http.HttpSession session, LoginSession owning) void
removeLoginSession
(String toRemove, boolean soft)
-
Field Details
-
USER_SESSION_KEY
Under this key theLoginSession
id is stored in the HTTP session.- See Also:
-
SELF_REFERENCING_ATTRIBUTE
- See Also:
-
-
Method Details
-
removeLoginSession
- Parameters:
toRemove
-soft
- if true then only the login data is removed from the HTTP session. Otherwise the whole session is invalidated
-
bindHttpSession
-