From 06ce4b79e93e33458ffcd6feb60913a1b5f6f4d4 Mon Sep 17 00:00:00 2001
From: Luke Taylor <luke.taylor@springsource.com>
Date: Sat, 27 Oct 2007 00:23:21 +0000
Subject: [PATCH] SEC-584: Remove use of default SessionRegistryImpl.

---
 .../security/concurrent/ConcurrentSessionControllerImpl.java    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/src/main/java/org/springframework/security/concurrent/ConcurrentSessionControllerImpl.java b/core/src/main/java/org/springframework/security/concurrent/ConcurrentSessionControllerImpl.java
index b351683aaa..b770d230b6 100644
--- a/core/src/main/java/org/springframework/security/concurrent/ConcurrentSessionControllerImpl.java
+++ b/core/src/main/java/org/springframework/security/concurrent/ConcurrentSessionControllerImpl.java
@@ -40,7 +40,7 @@ public class ConcurrentSessionControllerImpl implements ConcurrentSessionControl
     //~ Instance fields ================================================================================================
 
     protected MessageSourceAccessor messages = SpringSecurityMessageSource.getAccessor();
-    private SessionRegistry sessionRegistry = new SessionRegistryImpl();
+    private SessionRegistry sessionRegistry;
     private boolean exceptionIfMaximumExceeded = false;
     private int maximumSessions = 1;