Skip to content

SEC-1916: Exception Thrown During OpenID Authentication When User's Session Expires #2144

New issue
New issue
Open
Open
SEC-1916: Exception Thrown During OpenID Authentication When User's Session Expires#2144
Labels
in: openidAn issue in spring-security-openidtype: enhancementA general enhancementtype: jiraAn issue that was migrated from JIRA
@spring-projects-issues

Description

@spring-projects-issues
spring-projects-issues
opened on Feb 16, 2012

Gary Jolly (Migrated from SEC-1916) said:

Please see "Spring Forum Reference" for origin of improvement request.

Because data that's important to the OpenID authentication process is stored in the session, if the user's session expires an exception is thrown. For example, the user got redirected to the login page but didn't enter their credentials right away (causes session to expire).

It would be nice to be able to use different strategies for saving the OpenID data needed during the authentication process. Right now, only the session is being used.

Activity

spring-projects-issues
added
in: openidAn issue in spring-security-openid
Open
type: enhancementA general enhancement
type: jiraAn issue that was migrated from JIRA
on Feb 5, 2016
rwinch
removed
Open
on May 3, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    in: openidAn issue in spring-security-openidtype: enhancementA general enhancementtype: jiraAn issue that was migrated from JIRA

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

      Development

      No branches or pull requests

        Participants

        @rwinch@spring-projects-issues

        Issue actions
          SEC-1916: Exception Thrown During OpenID Authentication When User's Session Expires · Issue #2144 · spring-projects/spring-security