Updated doc on invalid session detection.

Invalid session URL must typically be omitted from the filter chain to prevent an infinite loop.
2010-01-17 14:41:24 +00:00 · 2010-01-17 14:41:24 +00:00 · a5dde8b28f
parent 51dfc0fb39
commit a5dde8b28f
1 changed files with 1 additions and 1 deletions
--- a/samples/tutorial/src/main/webapp/WEB-INF/applicationContext-security.xml
+++ b/samples/tutorial/src/main/webapp/WEB-INF/applicationContext-security.xml
@ -33,7 +33,7 @@
        <x509 />
 -->
        <!-- Uncomment to limit the number of sessions a user can have -->
-        <session-management>
+        <session-management invalid-session-url="/something">
            <concurrency-control max-sessions="1" error-if-maximum-exceeded="true" />
        </session-management>