* limitations under the License.
* ============LICENSE_END============================================
* ===================================================================
- * ECOMP is a trademark and service mark of AT&T Intellectual Property.
+ *
*/
package org.onap.clamp.clds.config.spring;
protected void configure(HttpSecurity http) {
try {
http.csrf().disable().httpBasic().and().authorizeRequests().antMatchers("/restservices/clds/v1/user/**")
- .authenticated().anyRequest().permitAll().and().logout();
+ .authenticated().anyRequest().permitAll().and().logout()
+ .and().sessionManagement()
+ .maximumSessions(1)
+ .and().invalidSessionUrl("/designer/timeout.html");
+
} catch (Exception e) {
logger.error("Exception occurred during the setup of the Web users in memory", e);
throw new CldsUsersException("Exception occurred during the setup of the Web users in memory", e);
if ("bcrypt".equals(cldsEncoderMethod)) {
return new BCryptPasswordEncoder(cldsBcryptEncoderStrength);
} else {
- throw new CldsConfigException("Invalid clamp.config.security.encoder value. Must be one of [bcrypt, none]");
+ throw new CldsConfigException("Invalid clamp.config.security.encoder value. 'bcrypt' is the only option at this time.");
}
}
}