Set Session Timeout Using Spring Security 3.0

Question

Set Session Timeout Using Spring Security 3.0

I am using Spring Security 3.0 for authentication with an LDAP server and I cannot figure out how to set my own session timeout period. I believe that the default is 30 minutes, but I need to install it longer than

+48

java spring-security session-timeout

Benoit Martin Mar 22 '11 at 0:00

source share

1 answer

sourcedelica · Accepted Answer · 2011-03-22 01:36

You can set a session timeout (say, 60 minutes) for all sessions in web.xml:

<session-config> <session-timeout>60</session-timeout> </session-config>

or for each session using

 session.setMaxInactiveInterval(60*60);

the last one you might want to do in a Suhhandler authorization.

 <form-login authentication-success-handler-ref="authenticationSuccessHandler"/>

Set Session Timeout Using Spring Security 3.0

More articles: