You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@shiro.apache.org by Les Hazlewood <lh...@apache.org> on 2011/06/09 19:41:35 UTC

Re: DefaultWebSecurityManager isHttpSessionMode may be error?

Hello,

Are you seeing a problem?  I think that if there were to be a change
for this, it would be:

return sm == null || !sm.equals(NATIVE_SESSION_MODE)

This way normal servlet container sessions are always used _unless_
the native mode is explicitly turned on.  If you feel this should be
changed, please open a Jira issue, and we can address it ASAP.

Thanks,

-- 
Les Hazlewood
CTO, Katasoft | http://www.katasoft.com | 888.391.5282
twitter: http://twitter.com/lhazlewood
katasoft blog: http://www.katasoft.com/blogs/lhazlewood
personal blog: http://leshazlewood.com