spring security - SpringSecurity replaying a login Grails -



spring security - SpringSecurity replaying a login Grails -

in grails, have configured spring security. best practise alter value of session tokens after login , logout. however, wondering should behaviour if login replayed.

for example, logs in, receives valid session token (http jsession). replay login, should new token or not?

i think section of documentation regarding session fixation prevention addresses potential issue. unless have technical reason not enabling feature it's best practice so.

grails spring-security

Comments

Post a Comment

Popular posts from this blog

php - How to pass multiple values from url -

php - How to pass multiple values from url - i'm trying pass textbox , 1 select result value 1 page page.using url.but it's display error message. "parse error: syntax error, unexpected '' (t_encapsed_and_whitespace), expecting identifier (t_string) or variable (t_variable) or number (t_num_string) in c:.." while($value= mysqli_fetch_assoc($result)){ $apid=$value['apid']; echo("<tr> <td>". $value['apid'] ."</td> <td>".$value['email']."</td> <td>".$value['comments']."</td> <td>".'<input type="text" name="payment"/>'."</td> <td>"."<input type='text' name='apid' value='".$apid."' style='visibility:hidden' size='2'>"."</a>"."<a hre...
Read more

database - php search bar when I press submit with nothing in the search bar it shows all the data -

database - php search bar when I press submit with nothing in the search bar it shows all the data - the search fusion works correctly if press submit nil in search bar shows data. how message show saying nil has been entered search bar ?.i new php. <?php $mysql_host="host"; $mysql_database="database"; $mysql_user="username"; $mysql_password="password"; $dbconnect=@mysql_connect($mysql_host, $mysql_user, $mysql_password); // trys connect database if (!$dbconnect) { exit("an error has occurred - not connect database."); // if couldn't connect, allow user know } if(!mysql_select_db($mysql_database)) { exit("an error has occurred - not select database."); //if couldn't select db, allow user know } $output = ''; //collect if(isset($_post['search'])...
Read more

ios - How to load .png images from Documents folder of an app -

ios - How to load .png images from Documents folder of an app - i have .png images in documents folder of app when seek load them don't work :/ i have class methods saving , loading : uiimage+loadscan.h : #import <uikit/uikit.h> @interface uiimage (loadscan) - (void)savescan:(nsstring*)name; - (uiimage *)loadscan:(nsstring*)name; @end .m : #import "uiimage+loadscan.h" @implementation uiimage (loadscan) #pragma save , load - (void)savescan:(nsstring*)name{ if (self != nil) { nsarray *paths = nssearchpathfordirectoriesindomains(nsdocumentdirectory, nsuserdomainmask, yes); nsstring *documentsdirectory = [paths objectatindex:0]; nsstring* path = [documentsdirectory stringbyappendingpathcomponent: [nsstring stringwithstring:name] ]; nsdata* info = uiimagepngrepresentation(self); [data writetofile:path atomicall...
Read more