spring-session
spring-session copied to clipboard
spring-projects
Spring Session
As of now, the `requestedSession` is cached as a [field in the request wrapper](https://github.com/spring-projects/spring-session/blob/7b88ac086265b73da92d012b999f45501730a9eb/spring-session-core/src/main/java/org/springframework/session/web/http/SessionRepositoryFilter.java#L197). The majority of servlet containers recycle their request objects and return them to the pool for...
**Describe the bug** First of all, it's not a bug. It's a possibility to improve performance by avoiding unnecessary deserialization in RedisOperations every time session is loaded from redis. In...
**Describe the bug** Session cookie is not issued when the output buffer size exceeds due to including multibyte characters on Spring Boot with Jetty server. **To Reproduce** 1. include Jetty...
**Expected Behavior** org.springframework.session.hazelcast.SessionUpdateEntryProcessor class should store attributes as ``` private Map delta; ``` This allows SessionUpdateEntryProcessor to be serialized and sent to Hazelcast cluster without the cluster knowing the actual...
Bumps `org-springframework-boot` from 3.2.9 to 3.2.10. Updates `org.springframework.boot:spring-boot-dependencies` from 3.2.9 to 3.2.10 Release notes Sourced from org.springframework.boot:spring-boot-dependencies's releases. v3.2.10 :lady_beetle: Bug Fixes management.health.db.ignore-routing-datasources=true has no effect when an AbstractRoutingDataSource has...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps `org-springframework-boot` from 3.2.9 to 3.2.10. Updates `org.springframework.boot:spring-boot-dependencies` from 3.2.9 to 3.2.10 Release notes Sourced from org.springframework.boot:spring-boot-dependencies's releases. v3.2.10 :lady_beetle: Bug Fixes management.health.db.ignore-routing-datasources=true has no effect when an AbstractRoutingDataSource has...
Bumps `org-springframework-boot` from 3.3.3 to 3.3.4. Updates `org.springframework.boot:spring-boot-dependencies` from 3.3.3 to 3.3.4 Release notes Sourced from org.springframework.boot:spring-boot-dependencies's releases. v3.3.4 :lady_beetle: Bug Fixes management.health.db.ignore-routing-datasources=true has no effect when an AbstractRoutingDataSource has...
`RedisIndexedSessionRepository` and `RedisSessionExpirationPolicy` create a lot of single-use proxies by relying on `BoundHashOperations`. For instance in this case: https://github.com/spring-projects/spring-session/blob/f6f4c8652e03257420bc35f44492c5dc5d4121a9/spring-session-data-redis/src/main/java/org/springframework/session/data/redis/RedisIndexedSessionRepository.java#L898-L903 https://github.com/spring-projects/spring-session/blob/f6f4c8652e03257420bc35f44492c5dc5d4121a9/spring-session-data-redis/src/main/java/org/springframework/session/data/redis/RedisIndexedSessionRepository.java#L733-L735 This showed up in our production profiler because of hundreds...
Bumps [org.springframework.security:spring-security-bom](https://github.com/spring-projects/spring-security) from 6.4.0-M4 to 6.4.0-SNAPSHOT. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
The issue I am encountering relates to the fact that while Spring Session / Security is saving my session data to Redis and applying a TTL (Time-To-Live) to the main...
