Java 使用spring security在会话超时时CAS注销
将spring security与CAS一起使用时,在会话超时时调用CAS注销然后重定向到重新验证的正确方法是什么Java 使用spring security在会话超时时CAS注销,java,spring-security,cas,Java,Spring Security,Cas,将spring security与CAS一起使用时,在会话超时时调用CAS注销然后重定向到重新验证的正确方法是什么 <security:http entry-point-ref="casAuthenticationEntryPoint" use-expressions="true"> <security:intercept-url pattern="/home" access="hasRole('ROLE_USER')"/> &
<security:http entry-point-ref="casAuthenticationEntryPoint" use-expressions="true">
<security:intercept-url pattern="/home" access="hasRole('ROLE_USER')"/>
<security:custom-filter after="CAS_FILTER" ref="casAuthenticationFilter" />
<security:session-management session-authentication-strategy-ref="concurrentSessionControlStrategy" />
<security:logout invalidate-session="true" logout-success-url="/cas-logout.jsp"/>
</security:http>
您可以按此操作。您将看到此配置是在CAS中设置的。默认情况下,用户的会话在空闲2小时后到期,如果您愿意的话
此行为必须定义存档
/cas-server-webapp/src/main/webapp/WEB-INF/spring-configuration/ticketExpirationPolicies.xml