Announcement Announcement Module
Collapse
No announcement yet.
Session Expiry and Timeouts Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • Session Expiry and Timeouts

    Hi All,

    I have used invalid-session-url property of session management and upon expiry of session it redirects me to session expired page.
    However, the problem I am facing that even I load the login page after session expiration time (set to 1 minute in web.xml) it renders session expiry page. The same thing applies to logout scenario.
    If I click on logout it renders session expiry page.

    It is driving me crazy

    Here is the stuff I have configured in security XML file:
    <security:http auto-config="false" use-expressions="true" access-denied-page="/accessDenied.do">
    <security:logout logout-url="/j_spring_security_logout" invalidate-session="true" logout-success-url="/welcome" delete-cookies="JSESSIONID"/>
    <security:anonymous username="Guest"/>

    <security:form-login login-page="/welcome" default-target-url="/loginUser.do"
    always-use-default-target="true" login-processing-url="/j_spring_security_check"
    authentication-failure-url="/errorLogin.do" />

    <security:session-management invalid-session-url="/sessionExpired"/>
    </security:http>

    I am using version 3.1.0.

    Kindly help.

    Regards,

    Bipul Sinha.

  • #2
    do not use invalid-session-url attribute.

    Comment


    • #3
      Hi,

      Thanks for your response. However, I need to use invalid-session-url attribute since, I have to show session expire page.
      Is there any other option?

      Regards,

      Bipul Sinha.

      Comment

      Working...
      X