我有一个需要从spring security 3.0.5升级到3.2.4的项目。 Web.xml是一样的,xxx-security-context.xml也差不多。
然而,当我从这个服务器转储会话时,我有一个旧会话:
org.springframework.security.core.context.SecurityContextImpl@42b2cbfe: Authentication: org.springframework.security.authentication.UsernamePasswordAuthenticationToken@42b2cbfe: Principal: org.springframework.security.core.userdetails.User@586034f: Username: admin; Password: [PROTECTED]; Enabled: true; AccountNonExpired: true; credentialsNonExpired: true; AccountNonLocked: true; Granted Authorities: ROLE_ADMIN,ROLE_IS_AUTHENTICATED_REMEMBERED,ROLE_USER; Credentials: [PROTECTED]; Authenticated: true; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@21a2c: RemoteIpAddress: 192.168.115.129; SessionId: 7BDDF7F528FD1F2DD5A72AC38F7A70CD; Granted Authorities: ROLE_ADMIN, ROLE_IS_AUTHENTICATED_REMEMBERED, ROLE_USER
新用户3.2.4在用户登录后根本没有这个。似乎会话在页面加载后立即被清除,这导致后续的AJAX调用被访问被拒绝。
任何人都可以提供帮助?