Allowing concurrent logins

20 views
Skip to first unread message

Raghu Mittal

unread,
Apr 11, 2014, 1:02:01 AM4/11/14
to openxd...@googlegroups.com
Hi

OpenXdata server has been currently configured to allow only 1 login session per user. So if I have logged in with my user, and somebody else logs in from a different machine, I get logged out and have to enter my password again.

In our case, we want to allow multiple logins of the same user. Can anyone point out how to configure Spring security so that concurrent logins are allowed? 

Thanks in advance,
Raghu

Ronald Kayondo

unread,
Apr 11, 2014, 1:06:35 AM4/11/14
to openxd...@googlegroups.com
In the file WEB-INF/openxdata-dashboard-applicationContext-security.xml

Change the the max-sessions attribute to whatever number in the concurrency-control tag.    

<http auto-config="true" realm="openXdata" access-decision-manager-ref="accessDecisionManager">
        <session-management>
            <concurrency-control max-sessions="10" session-registry-ref="sessionRegistry" />
        </session-management>





--
You received this message because you are subscribed to the Google Groups "openXdata Developers" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openxdata-de...@googlegroups.com.
To post to this group, send email to openxd...@googlegroups.com.
Visit this group at http://groups.google.com/group/openxdata-dev.
For more options, visit https://groups.google.com/d/optout.



--
Ronald. K

Raghu Mittal

unread,
Apr 11, 2014, 1:34:10 AM4/11/14
to openxd...@googlegroups.com
Hi Ronald,

Thanks for the really quick reply. I will try changing this attribute and see how it works.

Thanks again,
Raghu

Raghu Mittal

unread,
Apr 11, 2014, 2:59:43 AM4/11/14
to openxd...@googlegroups.com
Hi,

So what I did was - I commented out the session-management tag in WEB-INF/openxdata-dashboard-applicationContext-security.xml and now I don't have any limits on number of sessions allowed per user. Works great.

Thanks and regards,
Raghu

Ronald Kayondo

unread,
Apr 11, 2014, 3:14:33 AM4/11/14
to openxd...@googlegroups.com
Great that it worked. 

One side effect though is that runtime kicking of already logged in users won't be possible anymore due to the way it was implemented in OXD(it uses the OpenXDataSessionRegistryImpl which is referenced in that tag).

Raghu Mittal

unread,
Apr 11, 2014, 3:22:59 AM4/11/14
to openxd...@googlegroups.com
Oh, does it mean that: 
If I am logged in to the server, and the admin disables my user, I will still be allowed to do things on the server until i logout and only when I login again, will I see that my user has been disabled?

Regards,
Raghu Mittal
Co-founder & Tech Lead
Handheld Solutions & Research Labs Pvt Ltd

Ronald Kayondo

unread,
Apr 11, 2014, 3:29:09 AM4/11/14
to openxd...@googlegroups.com
True.

Raghu Mittal

unread,
Apr 11, 2014, 3:31:50 AM4/11/14
to openxd...@googlegroups.com
Ok, thanks, will keep that in mind.
Reply all
Reply to author
Forward
0 new messages