Concurrency control
Hi,
I want to implement concurrency control in my app. I'm using Flex hence I'm using Spring BlazeDS Integration 1.5.0M2 as well as Spring Security 3.0.5. This is part of my config:
Everything is ok while my first attempt to log in when there is another session - I get "Maximum sessions of 1 for this principal exceeded" error which i can handle. But when I try to log in for the second time Spring Security lets me in. Is there something missing in my configuration?Code:<security:global-method-security secured-annotations="enabled" jsr250-annotations="enabled"/> <security:http entry-point-ref="preAuthenticatedEntryPoint"> <security:session-management> <security:concurrency-control max-sessions="1" error-if-maximum-exceeded="true"/> </security:session-management> </security:http> <bean id="preAuthenticatedEntryPoint" class="org.springframework.flex.security3.FlexAuthenticationEntryPoint"/> <security:authentication-manager> <security:authentication-provider ref="myAuthenticationProvider"/> </security:authentication-manager>
Reply With Quote