SEC-1598: Removed invalid properties from SessionFixationProtectionStrategy bean declaration in Session Management chapter docbook.

This commit is contained in:
Luke Taylor 2010-10-23 18:24:04 +01:00
parent fabadff5f1
commit cf0289bc02
1 changed files with 1 additions and 4 deletions

View File

@ -53,10 +53,7 @@
</beans:bean>
<beans:bean id="sas" class=
"org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy">
<beans:property name="sessionRegistry" ref="sessionRegistry" />
<beans:property name="maximumSessions" value="1" />
</beans:bean>
"org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy" />
]]></programlisting>
Note that the use of the default, <classname>SessionFixationProtectionStrategy</classname>
may cause issues if you are storing beans in the session which implement