Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Already on GitHub? Sign in to your account

SEC-1324: session is logout,but the max-sessions also account it #1568

spring-issuemaster opened this Issue Dec 11, 2009 · 2 comments


None yet
1 participant

Liu yang (Migrated from SEC-1324) said:

My configuration is below:

In a same computer and IE6,action is below:
(1)use admin user log in the web system,it is ok;
(2)use admin user log in the web system too,it is ok;
Then make the (1) user log out.
(3)user admin user log in the web system third,system throw exception message like this :
the number of same user session is bigger than the max sessons number.
I think the session is log out and invalid,so it should not account in.So it is a bug?

Luke Taylor said:

I'm afraid there isn't enough information here. You'll need to provide full details of your configuration, version you're using, web.xml, log information and exception stacktraces. I don't believe the exception message you've quoted exists anywhere in the codebase.

Luke Taylor said:

Closing, as not a proper bug report and no further information provided.

@spring-issuemaster spring-issuemaster added this to the 3.0.0 milestone Feb 5, 2016

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment