Hi developers, I have one micro request for Tomcat manager application.
Manager application can display active sessions, with the most relevant data for that session (session id, TTL, last accessed time, TTL and so on). Guessed username is one of the columns. AFAICS in the code (SessionUtils.java) username is guessed from the request attributes that are listed in the array USER_TEST_ATTRIBUTES.
Can we add attribute "SPRING_SECURITY_LAST_USERNAME" to that array, so the users that are using Spring security for authentication may also see the username for the displayed session? (I already tested this, and it works fine.)
If yes, what are next steps? Should I open JIRA and provide patch? Or maybe that is not necessary, since it is a smallest possible modification.
Regards, Ognjen --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
