Skip to content

SEC-1916: Exception Thrown During OpenID Authentication When User's Session Expires #2144

New issue
New issue
Open
Open
SEC-1916: Exception Thrown During OpenID Authentication When User's Session Expires#2144
Labels
in: openidAn issue in spring-security-openidtype: enhancementA general enhancementtype: jiraAn issue that was migrated from JIRA
@spring-projects-issues

Description

@spring-projects-issues
spring-projects-issues
opened on Feb 16, 2012

Gary Jolly (Migrated from SEC-1916) said:

Please see "Spring Forum Reference" for origin of improvement request.

Because data that's important to the OpenID authentication process is stored in the session, if the user's session expires an exception is thrown. For example, the user got redirected to the login page but didn't enter their credentials right away (causes session to expire).

It would be nice to be able to use different strategies for saving the OpenID data needed during the authentication process. Right now, only the session is being used.

Metadata

Metadata

Assignees

No one assigned

    Labels

    in: openidAn issue in spring-security-openidtype: enhancementA general enhancementtype: jiraAn issue that was migrated from JIRA

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions