Java - Spring - Security (Working with the Session)

Session Scoped Beans

Click here to expand...
A bean can be defined with session scope simply by using the @Scope annotation on beans declared in the web-Context:
@Component
@Scope("session")
public class Foo { .. }
Or with XML:
<bean id="foo" scope="session"/>
Then, the bean can simply be injected into another bean:
@Autowired
private Foo theFoo;
And Spring will bind the new bean to the lifecycle of the HTTP Session

Injecting the Raw Session into a Controller

Click here to expand...
The raw HTTP Session can also be injected directly into a Controller method:
@RequestMapping(..)
public void fooMethod(HttpSession session) {
    session.setAttribute(Constants.FOO, new Foo());
    //...
    Foo foo = (Foo) session.getAttribute(Constants.FOO);
}

Obtaining the Raw Session

Click here to expand...
The current HTTP Session can also be obtained programmatically via the raw Servlet API:
ServletRequestAttributes attr = (ServletRequestAttributes) 
    RequestContextHolder.currentRequestAttributes();
HttpSession session= attr.getRequest().getSession(true); // true == allow create

／var／log marcus chiu

Explorer

Java - Spring - Security (Working with the Session)

Session Scoped Beans

Injecting the Raw Session into a Controller

Obtaining the Raw Session

／var／logmarcus chiu

Explorer

Java - Spring - Security (Working with the Session)

Session Scoped Beans

Injecting the Raw Session into a Controller

Obtaining the Raw Session

／var／log marcus chiu