List of usage examples for org.apache.shiro.web.servlet Cookie setHttpOnly
void setHttpOnly(boolean httpOnly);
From source file:com.github.richardwilly98.esdms.shiro.EsWebSessionManager.java
License:Open Source License
@Inject public EsWebSessionManager(SessionDAO sessionDAO, @Named(SystemParametersModule.SESSION_TIMEOUT) final long sessionTimeout) { super();/*w ww .j a v a2 s . c o m*/ this.setSessionDAO(sessionDAO); Cookie cookie = new SimpleCookie(RestAuthenticationService.ES_DMS_TICKET); cookie.setHttpOnly(true); setSessionIdCookie(cookie); setSessionIdCookieEnabled(true); setGlobalSessionTimeout(sessionTimeout); getGlobalSessionTimeout(); }
From source file:com.iyihua.commerce.web.auth.config.shiro.ShiroAutoConfiguration.java
License:Apache License
@Bean(name = "shiroFilter") @DependsOn("securityManager") @ConditionalOnMissingBean//from ww w. jav a 2s . com public ShiroFilterFactoryBean getShiroFilterFactoryBean(DefaultSecurityManager securityManager, Realm realm) { MyRealm myRealm = (MyRealm) realm; securityManager.setRealm(myRealm); // session,????session String enableShare = properties.getEnableShareJsession(); if (enableShare != null && enableShare.equals(enableShare)) { DefaultWebSessionManager sessionManager = (DefaultWebSessionManager) securityManager .getSessionManager(); Cookie c = new SimpleCookie(); c.setDomain(properties.getDomain()); c.setPath(properties.getPath()); c.setName(properties.getShareJsessionKey()); c.setHttpOnly(true); sessionManager.setSessionIdCookie(c); } ShiroFilterFactoryBean shiroFilter = new ShiroFilterFactoryBean(); shiroFilter.setSecurityManager(securityManager); shiroFilter.setLoginUrl(properties.getLoginUrl()); shiroFilter.setSuccessUrl(properties.getSuccessUrl()); shiroFilter.setUnauthorizedUrl(properties.getUnauthorizedUrl()); shiroFilter.setFilterChainDefinitionMap(properties.getFilterChainDefinitions()); return shiroFilter; }
From source file:com.iyihua.commerce.web.seller.config.shiro.ShiroAutoConfiguration.java
License:Apache License
@Bean(name = "shiroFilter") @DependsOn("securityManager") @ConditionalOnMissingBean/* w w w . j a va 2 s. c o m*/ public ShiroFilterFactoryBean getShiroFilterFactoryBean(DefaultSecurityManager securityManager, Realm realm) { MyRealm myRealm = (MyRealm) realm; securityManager.setRealm(myRealm); // session,????session String enableShare = properties.getEnableShareJsession(); if (enableShare != null && enableShare.equals(enableShare)) { DefaultWebSessionManager sessionManager = (DefaultWebSessionManager) securityManager .getSessionManager(); Cookie c = new SimpleCookie(); c.setDomain(properties.getDomain()); c.setPath(properties.getPath()); c.setName(properties.getShareJsessionKey()); c.setHttpOnly(true); sessionManager.setSessionIdCookie(c); } ShiroFilterFactoryBean shiroFilter = new ShiroFilterFactoryBean(); Map<String, Filter> filters = shiroFilter.getFilters(); filters.put("super", new MyFormAuthenticationFilter()); shiroFilter.setSecurityManager(securityManager); shiroFilter.setLoginUrl(properties.getLoginUrl()); shiroFilter.setSuccessUrl(properties.getSuccessUrl()); shiroFilter.setUnauthorizedUrl(properties.getUnauthorizedUrl()); shiroFilter.setFilterChainDefinitionMap(properties.getFilterChainDefinitions()); return shiroFilter; }
From source file:to.sauerkraut.krautadmin.auth.ConfigurableCookieRememberMeManager.java
License:Open Source License
public void configure(final RememberMeCookieConfiguration rememberMeCookieConfiguration) { final Cookie defaultCookie = getCookie(); defaultCookie.setName(rememberMeCookieConfiguration.getName()); defaultCookie.setMaxAge(rememberMeCookieConfiguration.getMaxAgeSeconds()); defaultCookie.setHttpOnly(rememberMeCookieConfiguration.isHttpOnly()); defaultCookie.setSecure(rememberMeCookieConfiguration.isSecure()); defaultCookie.setDomain(rememberMeCookieConfiguration.getDomain()); defaultCookie.setPath(rememberMeCookieConfiguration.getPath()); defaultCookie.setVersion(rememberMeCookieConfiguration.getVersion()); }