You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@shiro.apache.org by "Brian Demers (JIRA)" <ji...@apache.org> on 2016/07/07 14:24:11 UTC
[jira] [Resolved] (SHIRO-421) Unable to set long timeouts on
HttpServletSession
[ https://issues.apache.org/jira/browse/SHIRO-421?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Brian Demers resolved SHIRO-421.
--------------------------------
Resolution: Fixed
> Unable to set long timeouts on HttpServletSession
> -------------------------------------------------
>
> Key: SHIRO-421
> URL: https://issues.apache.org/jira/browse/SHIRO-421
> Project: Shiro
> Issue Type: Bug
> Components: Session Management
> Affects Versions: 1.2.1
> Reporter: Andrew Pitman
> Labels: patch, patch-with-test, session
> Fix For: 1.3.0
>
> Attachments: shiro-421.patch
>
>
> When I set the timeout on a org.apache.shiro.web.session.HttpServletSession to a large value (30 days == 2592000000 milliseconds) using the setTimeout(long) method and then read the timeout with the getTimeout() method, I get -1702967296. I would like to be able to do this in order to have a long-lasting session for users who select "remember me" when logging in to a web app.
> I think this may have something to do with the fact that the getTimeout() method is using integer multiplication before converting the javax.servlet.http.HttpSession's max inactive interval from an int to a long.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)