Dec 1st, 2008, 05:29 PM
How to make sure than EACH request is checked?
I'm using Spring Security for a while already and I was using the remember me service to make sure any http request is checked.
I recently discovered that service is not designed to do that.
I need to make sure that each request arriving to the server never ever use the security context in the session but instead look in the cookie (provided by the client) to proceed with that request. It's clearly stateless at this point and I 'm searching a way to remove the security context at the end of each request.
Any idea ?