How can I use Spring Security without sessions?
Posted
by Jarrod
on Stack Overflow
See other posts from Stack Overflow
or by Jarrod
Published on 2010-03-24T00:21:23Z
Indexed on
2010/03/24
0:23 UTC
Read the original article
Hit count: 412
I am building a web application with Spring Security that will live on Amazon EC2 and use Amazon's Elastic Load Balancers. Unfortunately, ELB does not support sticky sessions, so I need to ensure my application works properly without sessions.
So far, I have setup RememberMeServices to assign a token via a cookie, and this works fine, but I want the cookie to expire with the browser session (e.g. when the browser closes).
I have to imagine I'm not the first one to want to use Spring Security without sessions... any suggestions?
© Stack Overflow or respective owner