a

Signed-off-by: a <a>
2025-06-06 18:30:57 +00:00 · 2024-09-20 13:35:37 +01:00 · 2024-09-20 13:35:37 +01:00 · f9677b1fe8
commit f9677b1fe8
parent 04a6ebf515
3 changed files with 21 additions and 22 deletions
--- a/src/main/java/stirling/software/SPDF/config/security/UserAuthenticationFilter.java
+++ b/src/main/java/stirling/software/SPDF/config/security/UserAuthenticationFilter.java
@ -56,17 +56,17 @@ public class UserAuthenticationFilter extends OncePerRequestFilter {
        Authentication authentication = SecurityContextHolder.getContext().getAuthentication();

        // Check for session expiration (unsure if needed)
-//        if (authentication != null && authentication.isAuthenticated()) {
-//            String sessionId = request.getSession().getId();
-//            SessionInformation sessionInfo =
-//                    sessionPersistentRegistry.getSessionInformation(sessionId);
-//
-//            if (sessionInfo != null && sessionInfo.isExpired()) {
-//                SecurityContextHolder.clearContext();
-//                response.sendRedirect(request.getContextPath() + "/login?expired=true");
-//                return;
-//            }
-//        }
+        //        if (authentication != null && authentication.isAuthenticated()) {
+        //            String sessionId = request.getSession().getId();
+        //            SessionInformation sessionInfo =
+        //                    sessionPersistentRegistry.getSessionInformation(sessionId);
+        //
+        //            if (sessionInfo != null && sessionInfo.isExpired()) {
+        //                SecurityContextHolder.clearContext();
+        //                response.sendRedirect(request.getContextPath() + "/login?expired=true");
+        //                return;
+        //            }
+        //        }

        // Check for API key in the request headers if no authentication exists
        if (authentication == null || !authentication.isAuthenticated()) {
--- a/src/main/java/stirling/software/SPDF/config/security/session/CustomHttpSessionListener.java
+++ b/src/main/java/stirling/software/SPDF/config/security/session/CustomHttpSessionListener.java
@ -26,11 +26,10 @@ public class CustomHttpSessionListener implements HttpSessionListener {

    @Override
    public void sessionCreated(HttpSessionEvent se) {
-            log.info(
-                    "Session created: {} with count {}",
-                    se.getSession().getId(),
-                    activeSessions.incrementAndGet());
-
+        log.info(
+                "Session created: {} with count {}",
+                se.getSession().getId(),
+                activeSessions.incrementAndGet());
    }

    @Override
--- a/src/main/java/stirling/software/SPDF/config/security/session/SessionPersistentRegistry.java
+++ b/src/main/java/stirling/software/SPDF/config/security/session/SessionPersistentRegistry.java
@ -85,12 +85,12 @@ public class SessionPersistentRegistry implements SessionRegistry {

        if (principalName != null) {
            // Clear old sessions for the principal (unsure if needed)
-//            List<SessionEntity> existingSessions =
-//                    sessionRepository.findByPrincipalName(principalName);
-//            for (SessionEntity session : existingSessions) {
-//                session.setExpired(true);
-//                sessionRepository.save(session);
-//            }
+            //            List<SessionEntity> existingSessions =
+            //                    sessionRepository.findByPrincipalName(principalName);
+            //            for (SessionEntity session : existingSessions) {
+            //                session.setExpired(true);
+            //                sessionRepository.save(session);
+            //            }

            SessionEntity sessionEntity = new SessionEntity();
            sessionEntity.setSessionId(sessionId);