mirror of
https://github.com/Frooodle/Stirling-PDF.git
synced 2024-12-21 19:08:24 +01:00
fix
This commit is contained in:
parent
329f755823
commit
fbc6b3a70e
@ -163,31 +163,12 @@ public class SecurityConfiguration {
|
|||||||
http.sessionManagement(
|
http.sessionManagement(
|
||||||
sessionManagement ->
|
sessionManagement ->
|
||||||
sessionManagement
|
sessionManagement
|
||||||
|
.sessionCreationPolicy(SessionCreationPolicy.IF_REQUIRED)
|
||||||
.maximumSessions(10)
|
.maximumSessions(10)
|
||||||
.maxSessionsPreventsLogin(false)
|
.maxSessionsPreventsLogin(false)
|
||||||
.sessionRegistry(sessionRegistry)
|
.sessionRegistry(sessionRegistry)
|
||||||
|
.expiredUrl("/login?logout=true"));
|
||||||
|
|
||||||
.expiredUrl("/login?logout=true"))
|
|
||||||
.addFilterBefore(
|
|
||||||
new ForceEagerSessionCreationFilter(),
|
|
||||||
SecurityContextHolderFilter.class)
|
|
||||||
.addFilterBefore(new ForceEagerSessionCreationFilter(), SecurityContextHolderFilter.class);
|
|
||||||
|
|
||||||
http.addFilterBefore(new OncePerRequestFilter() {
|
|
||||||
@Override
|
|
||||||
protected void doFilterInternal(HttpServletRequest request,
|
|
||||||
HttpServletResponse response, FilterChain filterChain)
|
|
||||||
throws ServletException, IOException {
|
|
||||||
|
|
||||||
if (request.getRequestURI().startsWith("/saml2")) {
|
|
||||||
response.setHeader("Set-Cookie",
|
|
||||||
response.getHeader("Set-Cookie")
|
|
||||||
.concat(";SameSite=None;Secure"));
|
|
||||||
}
|
|
||||||
filterChain.doFilter(request, response);
|
|
||||||
}
|
|
||||||
}, SessionManagementFilter.class);
|
|
||||||
|
|
||||||
http.authenticationProvider(daoAuthenticationProvider());
|
http.authenticationProvider(daoAuthenticationProvider());
|
||||||
http.requestCache(requestCache -> requestCache.requestCache(new NullRequestCache()));
|
http.requestCache(requestCache -> requestCache.requestCache(new NullRequestCache()));
|
||||||
http.logout(
|
http.logout(
|
||||||
@ -471,19 +452,6 @@ public class SecurityConfiguration {
|
|||||||
.clientName("OIDC")
|
.clientName("OIDC")
|
||||||
.build());
|
.build());
|
||||||
}
|
}
|
||||||
|
|
||||||
@Bean
|
|
||||||
public CookieSerializer cookieSerializer() {
|
|
||||||
DefaultCookieSerializer serializer = new DefaultCookieSerializer();
|
|
||||||
serializer.setSameSite("None");
|
|
||||||
serializer.setUseSecureCookie(true); // Required when using SameSite=None
|
|
||||||
return serializer;
|
|
||||||
}
|
|
||||||
|
|
||||||
@Bean
|
|
||||||
public HttpSessionEventPublisher httpSessionEventPublisher() {
|
|
||||||
return new HttpSessionEventPublisher();
|
|
||||||
}
|
|
||||||
|
|
||||||
@Bean
|
@Bean
|
||||||
@ConditionalOnProperty(
|
@ConditionalOnProperty(
|
||||||
|
Loading…
Reference in New Issue
Block a user