All Questions
Tagged with spring-session cookies
9
questions
0
votes
0
answers
53
views
Spring Session - Cookie Based Authentication's sessionToken leads to vulnerability
In my spring application, I have implemented spring security and cookie based authentication using spring session management whith redis server for storing sessions.
In my application after login the ...
1
vote
0
answers
1k
views
set Domain on cookie using spring security when login success
How can I set the property "domain" on the users cookie when the user has authenticated from spring?
Edit: id like to add domain=".mydomain.com" to cookie with id JSESSIONID
I dont ...
- 764
2
votes
1
answer
3k
views
Refresh expiration of cookie of session in spring boot
I am solving problem with cookie expiration which holds information about session with given user.
I tried this solution:
refresh cookie on each request in spring
but condition cookie.getValue()....
- 5,061
1
vote
1
answer
341
views
HTTP POST from app.example.com to localhost: session cookie not sent
I have two Spring Web applications that work together. I'm running the first application from the IDE on localhost, while the second one is running in docker on app.127.0.0.1.nip.io.
The two ...
- 143
1
vote
1
answer
3k
views
Client-side cookie-based authentication with Spring Security
We have a fully-working back-end login POST service, implemented using Spring Security, along with Spring Boot and Spring Session. A user needs to be logged-in in order to access other services. The ...
- 159
0
votes
1
answer
2k
views
Prevent session sharing between browser tabs
I have a nasty bug: open two tabs with login pages and log in with different users in each one. All requests from first tab that logged in return with 'unauthorized' error.
Frontend uses SESSION ...
- 324
1
vote
1
answer
156
views
can the HeaderHttpSessionStrategy work with Cookies in Spring Session
I am trying to create a simple login page with just sessions and no spring security. I am having issues with spring session and the SPring session with REST documentation is not helpful. My issue is; ...
1
vote
1
answer
2k
views
Cookie vs x-auth-token with application supporting both RESTful and web
I'm writing an application that exposes some of the services through Web while the others as RESTful services and using Spring Security & Spring Session for authentication and session handling. ...
- 5,474
2
votes
1
answer
5k
views
Custom cookie name when using Spring Session
I am using v1.0.1 of Spring Sessions. I have got my application setup using XML configurations. I now need to change the cookie name from the default of "SESSION" based on some property. For example ...
- 873