spring security 에서 중복체크가 되질않습니다.
- 작성자 :
- 김*현
- 작성일 :
- 2015-04-03 09:14:22
- 조회수 :
- 1,957
- 구분 :
- 기타
- 진행상태 :
- 완료
Q
spring security 적용후 권한관리, 그룹별 권한 관리까지는 잘 되는데..
중복로그인 체크 하기 위해
<session-management invalid-session-url="/error3.do" >
<concurrency-control max-sessions="1" session-registry-ref="sessionRegistry" error-if-maximum-exceeded="false" expired-url="/error3.do"/>
</session-management>
적용 하였는데 중복체크가 되지 않아
<custom-filter before="FILTER_SECURITY_INTERCEPTOR" ref="filterSecurityInterceptor"/>
<custom-filter position="CONCURRENT_SESSION_FILTER" ref="concurrencyFilter" />
<custom-filter position="FORM_LOGIN_FILTER" ref="myAuthFilter" />
<session-management session-authentication-strategy-ref="sas"/>
이렇게 바꾸었더니..
Filter beans '<myAuthFilter>' and '<org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter#com.withus.vodcaster_new#src/main/webapp/WEB-INF/spring/appServlet/security-
context.xml#27>' have the same 'order' value. When using custom filters, please make sure the positions do not conflict with default filters. Alternatively you can disable the default filters by removing the
corresponding child elements from <http> and avoiding the use of <http auto-config='true'>.
에러가 발생합니다.
중복로그인 체크 하기 위해
<session-management invalid-session-url="/error3.do" >
<concurrency-control max-sessions="1" session-registry-ref="sessionRegistry" error-if-maximum-exceeded="false" expired-url="/error3.do"/>
</session-management>
적용 하였는데 중복체크가 되지 않아
<custom-filter before="FILTER_SECURITY_INTERCEPTOR" ref="filterSecurityInterceptor"/>
<custom-filter position="CONCURRENT_SESSION_FILTER" ref="concurrencyFilter" />
<custom-filter position="FORM_LOGIN_FILTER" ref="myAuthFilter" />
<session-management session-authentication-strategy-ref="sas"/>
이렇게 바꾸었더니..
Filter beans '<myAuthFilter>' and '<org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter#com.withus.vodcaster_new#src/main/webapp/WEB-INF/spring/appServlet/security-
context.xml#27>' have the same 'order' value. When using custom filters, please make sure the positions do not conflict with default filters. Alternatively you can disable the default filters by removing the
corresponding child elements from <http> and avoiding the use of <http auto-config='true'>.
에러가 발생합니다.
A
안녕하세요. 김주현님.
UsernamePasswordAuthenticationFilter 해당 빈이 충돌이 나서 그런거 같습니다.
표준프레임워크세에서는 UsernamePasswordAuthenticationFilter 사용하기 때문에 사용할수 없습니다.
아래 설정만으로도 충분 할꺼 같습니다.
<session-management>
<concurrency-control max-sessions="1" error-if-maximum-exceeded="true" />
</session-management>
UsernamePasswordAuthenticationFilter 해당 빈이 충돌이 나서 그런거 같습니다.
표준프레임워크세에서는 UsernamePasswordAuthenticationFilter 사용하기 때문에 사용할수 없습니다.
아래 설정만으로도 충분 할꺼 같습니다.
<session-management>
<concurrency-control max-sessions="1" error-if-maximum-exceeded="true" />
</session-management>