Package org.springframework.security.core.session

Class SessionInformation

  • All Implemented Interfaces:
    java.io.Serializable
    public class SessionInformation
extends java.lang.Object
implements java.io.Serializable
    Represents a record of a session within the Spring Security framework.

    This is primarily used for concurrent session support.

    Sessions have three states: active, expired, and destroyed. A session can that is invalidated by session.invalidate() or via Servlet Container management is considered "destroyed". An "expired" session, on the other hand, is a session that Spring Security wants to end because it was selected for removal for some reason (generally as it was the least recently used session and the maximum sessions for the user were reached). An "expired" session is removed as soon as possible by a Filter.

    See Also:
    Serialized Form

    • Constructor Summary

      Constructors 
      Constructor Description
      SessionInformation​(java.lang.Object principal, java.lang.String sessionId, java.util.Date lastRequest)  

    • Constructor Detail

      • SessionInformation

        public SessionInformation​(java.lang.Object principal,
                          java.lang.String sessionId,
                          java.util.Date lastRequest)

    • Method Detail

      • expireNow

        public void expireNow()

      • getLastRequest

        public java.util.Date getLastRequest()

      • getPrincipal

        public java.lang.Object getPrincipal()

      • getSessionId

        public java.lang.String getSessionId()

      • isExpired

        public boolean isExpired()

      • refreshLastRequest

        public void refreshLastRequest()
        Refreshes the internal lastRequest to the current date and time.