pache Shiro 1.2.3 发布,此版本是稳定版(Java 1.5+ JVM),同时是个 bug 修复版本。现已提供下载。
Issues: Unresolved
Key Summary Due Date
Bug SHIRO-421 Unable to set long timeouts on HttpServletSession
Bug SHIRO-442 CAS client fails with multi-valued SAML attributes
Bug SHIRO-444 Rewrite AuthorizingRealm, and configure the cacheManager throws an exception
View Issues
其中提到了一个更新[color=red] Unable to set long timeouts on HttpServletSession [/color] 谷歌翻译:无法在HttpServletSession设置超时长
1.2.2的这个bug导致 <bean id="sessionManager" class="org.apache.shiro.web.session.mgt.DefaultWebSessionManager">
<!-- 超时时间 -->
<property name="globalSessionTimeout" value="3600000"/>
<property name="sessionDAO" ref="shiroSessionDao"/>
<property name="sessionIdCookie" ref="sharesession"/>
<!-- 定时检查失效的session -->
<property name="sessionValidationSchedulerEnabled" value="true" />
</bean>这个设置无效
替换最新jar包就能解决bug
Issues: Unresolved
Key Summary Due Date
Bug SHIRO-421 Unable to set long timeouts on HttpServletSession
Bug SHIRO-442 CAS client fails with multi-valued SAML attributes
Bug SHIRO-444 Rewrite AuthorizingRealm, and configure the cacheManager throws an exception
View Issues
其中提到了一个更新[color=red] Unable to set long timeouts on HttpServletSession [/color] 谷歌翻译:无法在HttpServletSession设置超时长
1.2.2的这个bug导致 <bean id="sessionManager" class="org.apache.shiro.web.session.mgt.DefaultWebSessionManager">
<!-- 超时时间 -->
<property name="globalSessionTimeout" value="3600000"/>
<property name="sessionDAO" ref="shiroSessionDao"/>
<property name="sessionIdCookie" ref="sharesession"/>
<!-- 定时检查失效的session -->
<property name="sessionValidationSchedulerEnabled" value="true" />
</bean>这个设置无效
替换最新jar包就能解决bug