@Override public void changeSessionId( final Session session ) { // e.g. invoked by the AuthenticatorBase (for BASIC auth) on login to prevent session fixation // so that session backup won't be omitted we must store this event super.changeSessionId( session ); ((MemcachedBackupSession)session).setSessionIdChanged(true); }
@Override public void changeSessionId( final Session session ) { // e.g. invoked by the AuthenticatorBase (for BASIC auth) on login to prevent session fixation // so that session backup won't be omitted we must store this event super.changeSessionId( session ); ((MemcachedBackupSession)session).setSessionIdChanged( true ); }
@Override public void changeSessionId( final Session session ) { // e.g. invoked by the AuthenticatorBase (for BASIC auth) on login to prevent session fixation // so that session backup won't be omitted we must store this event super.changeSessionId( session ); ((MemcachedBackupSession)session).setSessionIdChanged( true ); }
@Override public void changeSessionId( final Session session ) { // e.g. invoked by the AuthenticatorBase (for BASIC auth) on login to prevent session fixation // so that session backup won't be omitted we must store this event super.changeSessionId( session ); ((MemcachedBackupSession)session).setSessionIdChanged(true); }
/** * Change the session ID of the current session to a specified session ID. * * @param session The session to change the session ID for * @param newId new session ID */ @Override public void changeSessionId(Session session, String newId) { changeSessionId(session, newId, true, true); }
@Override public void changeSessionId(Session session, String newId) { changeSessionId(session, newId, true, true); }
@Override public void changeSessionId(Session session, String newId) { changeSessionId(session, newId, true, true); }
@Override public void changeSessionId(Session session) { String newId = generateSessionId(); changeSessionId(session, newId, true, true); }
/** * Change the session ID of the current session to a new randomly generated * session ID. * * @param session The session to change the session ID for */ @Override public void changeSessionId(Session session) { String newId = generateSessionId(); changeSessionId(session, newId, true, true); }
@Override public void changeSessionId( final Session session ) { // e.g. invoked by the AuthenticatorBase (for BASIC auth) on login to prevent session fixation // so that session backup won't be omitted we must store this event super.changeSessionId( session ); ((MemcachedBackupSession)session).setSessionIdChanged(true); }
@Override public void changeSessionId(Session session) { String newId = generateSessionId(); changeSessionId(session, newId, true, true); }
@Override protected void changeSessionId(Session session, String newId, boolean notifySessionListeners, boolean notifyContainerListeners) { final String oldId = session.getId(); super.changeSessionId(session, newId, notifySessionListeners, notifyContainerListeners); if (RedisSession.class.isAssignableFrom(session.getClass())) { final RedisSession rSession = RedisSession.class.cast(session); currentSessionState.set(new RedisSessionState(rSession, false)); getClient().delete(generateRedisSessionKey(oldId)); save(rSession, true); } else { throw new UnsupportedOperationException("Could not change a session ID with class " + session.getClass()); } }