tag:blogger.com,1999:blog-8712770457197348465.post8205531909936365701..comments2024-03-17T23:01:26.872-07:00Comments on Javarevisited: How to limit number of concurrent session in a Java web application using Spring Security? Examplejavin paulhttp://www.blogger.com/profile/15028902221295732276noreply@blogger.comBlogger11125tag:blogger.com,1999:blog-8712770457197348465.post-17575674033849530922016-03-08T09:09:42.848-08:002016-03-08T09:09:42.848-08:00Hi Javin,
After implementing your below code
...Hi Javin,<br /><br />After implementing your below code <br /><br /> <br /><br />I observed that concurrent session of a user<br />is possible from same browser e.g same user can login multiple times from same browser how can I stop user from second time login from the same browser e.g IE if that user is already logged ?<br />How can stop concurrent login for a specific user the above code isAnonymoushttps://www.blogger.com/profile/15773976028077549435noreply@blogger.comtag:blogger.com,1999:blog-8712770457197348465.post-64449274557062214972015-12-31T22:50:30.554-08:002015-12-31T22:50:30.554-08:00@arnab, there is a setting for that which allow mu...@arnab, there is a setting for that which allow multiple active session, as discussed on my post <a href="http://javarevisited.blogspot.com/2012/03/spring-security-example-tutorial-how-to.html" rel="nofollow">how to control active session in Spring security</a>. You can configure it depending upon your requirement.javin paulhttps://www.blogger.com/profile/15028902221295732276noreply@blogger.comtag:blogger.com,1999:blog-8712770457197348465.post-13053688359982669512015-12-31T11:28:15.584-08:002015-12-31T11:28:15.584-08:00Hi Javin Paul,
After implementing your code I obs...Hi Javin Paul,<br /><br />After implementing your code I observed that if I login as specific user say admin in internet explorer then I am able to login into IE with same user but it does not allow to login with admin in another browser chrome vice -versa .please tell why does not work for the same browserAnonymoushttps://www.blogger.com/profile/15773976028077549435noreply@blogger.comtag:blogger.com,1999:blog-8712770457197348465.post-63707896590222443172015-07-11T04:13:11.960-07:002015-07-11T04:13:11.960-07:00Hello Neethu, what is the error you are getting? s...Hello Neethu, what is the error you are getting? some more information would be helpful because its spring spring security feature not core spring framework. javin paulhttps://www.blogger.com/profile/15028902221295732276noreply@blogger.comtag:blogger.com,1999:blog-8712770457197348465.post-1290170101931278442015-07-02T00:36:04.002-07:002015-07-02T00:36:04.002-07:00Im using spring 2 version the same code is not wor...Im using spring 2 version the same code is not working for me.i cant migrate to spring 3 as im doing enhancement if i try to migrate from spring 2 to spring 3 it is very difficult for me.can any body help me to fined the solutionAnonymoushttps://www.blogger.com/profile/03562237304565109621noreply@blogger.comtag:blogger.com,1999:blog-8712770457197348465.post-80783133056000802812013-09-11T00:10:57.613-07:002013-09-11T00:10:57.613-07:00how to enable Spring Security in case of browser c...how to enable Spring Security in case of browser close or browser crash scenario....??Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8712770457197348465.post-26128162810336452222012-12-30T12:20:57.242-08:002012-12-30T12:20:57.242-08:00@Sinduraj, The concurrentsessionfilter indeed does...@Sinduraj, The concurrentsessionfilter indeed does not work in a clustered environment with multiple web servers. In order to make this work you would have to write a custom SessionRegistry as described here:<br />http://scalejava.blogspot.in/2012/12/clustered-spring-sessionregistry.htmlSourabh Ghosehttps://www.blogger.com/profile/12406723074994150793noreply@blogger.comtag:blogger.com,1999:blog-8712770457197348465.post-85858058488695707582012-08-14T21:56:15.596-07:002012-08-14T21:56:15.596-07:00@Sashika, it doesn't handle browser close scen...@Sashika, it doesn't handle browser close scenario. If user closes its browser without logging off from application, his user session will be active on Server and all subsequent login from same user will be denied as "maximum active session is 1". <br /><br />By the way this feature is called Spring Security Concurrent Session Control and available from Spring security 3.0 in Sindhurajnoreply@blogger.comtag:blogger.com,1999:blog-8712770457197348465.post-92069274370967066222012-04-23T06:25:19.762-07:002012-04-23T06:25:19.762-07:00Does this handle browser close or browser crash sc...Does this handle browser close or browser crash scenarios? If we set the max-sessions=1 and if we close the browser without logging off, can the user login again immediately?Sashikahttps://www.blogger.com/profile/09911266630964847597noreply@blogger.comtag:blogger.com,1999:blog-8712770457197348465.post-86307081089226606652012-04-03T20:42:47.504-07:002012-04-03T20:42:47.504-07:00Cool Example, just few lines of code. Indeed looks...Cool Example, just few lines of code. Indeed looks like Spring Security is full of such great feature which just need configuration to make them active. I am loving Security Security :)danishnoreply@blogger.comtag:blogger.com,1999:blog-8712770457197348465.post-51291604429242329452012-04-03T14:09:00.960-07:002012-04-03T14:09:00.960-07:00How does this work in a clustered environment?How does this work in a clustered environment?Anonymousnoreply@blogger.com