Announcement Announcement Module
Collapse
No announcement yet.
Concurrent Logins -- Is it in 0.8x? Page Title Module
Move Remove Collapse
This topic is closed
X
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • #31
    hi all,
    i was very interessted in reading the discussion about this topic.
    just a curious question... where is the principal hold by Acegi? In the HTTP session of the appserver? if not in the HTTP session does this also works in a clustered environment?

    thanks for any comments,
    sandro

    Comment


    • #32
      Acegi Security stores the principal (inside an Authentication object) inside the ContextHolder, which is a ThreadLocal for the life of a request. Betwen requests it is stored in a HttpSession. Acegi Security is used without problems in clustered environments, as sessions are sticky in general. Further, sessions are not required if using Digest or BASIC authentication.

      Comment

      Working...
      X