Details
-
Improvement
-
Status: Open
-
Major
-
Resolution: Unresolved
-
1.1.0, 1.2.0
-
None
-
None
Description
WebUtils.saveRequest() forces creating a session even if doesn't exist before. This hinders scalability. For savedRequests, it's not clear session is needed at all, a cookie might be better option for storing information in this case. Similarly, we should go through the rest of the codebase and see if sessions are created unnecessarily.
Attachments
Issue Links
- is related to
-
SHIRO-350 Creating a subject should not create a session
- Closed