@Override public Authentication getAuthentication(RequestBase request) { Session sc = request.getSession(false); if(null == sc){ return null; } return (Authentication)sc.getAttribute(SESSION_KEY); }
Session sc = request.getSession(false); if(null != sc){ HttpSession hs = sc.getServletSession(); sc = request.getSession(true);
@Override public Authentication removeAuthentication(RequestBase request) { Session sc = request.getSession(false); if(null == sc){ return null; } Authentication us = (Authentication)sc.getAttribute(SESSION_KEY); //TODO : config , invalidate session after logout if(null != us){ sc.removeAttribute(SESSION_KEY); sc.invalidate(); } return us; } }