You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@shiro.apache.org by lh...@apache.org on 2009/07/09 23:22:33 UTC
svn commit: r792707 -
/incubator/shiro/trunk/core/src/main/java/org/apache/shiro/mgt/SessionSubjectBinder.java
Author: lhazlewood
Date: Thu Jul 9 21:22:32 2009
New Revision: 792707
URL: http://svn.apache.org/viewvc?rev=792707&view=rev
Log:
prevented removing session attributes from the Session on unbind - this was eliminating session identity, which might need to be queried against by any potential registered SessionListeners later in the thread's execution
Modified:
incubator/shiro/trunk/core/src/main/java/org/apache/shiro/mgt/SessionSubjectBinder.java
Modified: incubator/shiro/trunk/core/src/main/java/org/apache/shiro/mgt/SessionSubjectBinder.java
URL: http://svn.apache.org/viewvc/incubator/shiro/trunk/core/src/main/java/org/apache/shiro/mgt/SessionSubjectBinder.java?rev=792707&r1=792706&r2=792707&view=diff
==============================================================================
--- incubator/shiro/trunk/core/src/main/java/org/apache/shiro/mgt/SessionSubjectBinder.java (original)
+++ incubator/shiro/trunk/core/src/main/java/org/apache/shiro/mgt/SessionSubjectBinder.java Thu Jul 9 21:22:32 2009
@@ -103,14 +103,4 @@
}
}
}
-
- @Override
- public void unbind(Subject subject) {
- Session session = subject.getSession(false);
- if (session != null) {
- session.removeAttribute(PRINCIPALS_SESSION_KEY);
- session.removeAttribute(AUTHENTICATED_SESSION_KEY);
- }
- super.unbind(subject);
- }
}