spring-security-config/org.springframework.security.config.annotation.web.session/SessionConcurrencyDsl

SessionConcurrencyDsl

class SessionConcurrencyDsl

A Kotlin DSL to configure the behaviour of multiple sessions using idiomatic Kotlin code.

Author

Eleftheria Stein

Since

5.3

Constructors

SessionConcurrencyDsl

constructor()

Properties

expiredSessionStrategy

var expiredSessionStrategy: SessionInformationExpiredStrategy?

determines the behaviour when an expired session is detected.

var expiredUrl: String?

the URL to redirect to if a user tries to access a resource and their session has been expired due to too many sessions for the current user.

maximumSessions

var maximumSessions: Int?

controls the maximum number of sessions for a user.

maxSessionsPreventsLogin

var maxSessionsPreventsLogin: Boolean?

if true, prevents a user from authenticating when the maximumSessions has been reached. Otherwise (default), the user who authenticates is allowed access and an existing user's session is expired.

sessionRegistry

var sessionRegistry: SessionRegistry?

the SessionRegistry implementation used.

Functions

maximumSessions

fun maximumSessions(max: SessionLimit)