Shiro's automatic redirect back to the last page viewed upon logging back in after a session expiration is working well.. actually a bit too well.
We came across a case where a file download link (generated from a REST call being authenicated by Shiro) is the URL being redirected to. This is not ideal because the user stays on our login page and gets multiple copies of the file when they click Login, instead of being redirected somewhere useful. I would much rather have this url excluded from the redirect behavior, and have the user just land on the fallback landing page in this case. Is this possible? The only other thing I can think to do is do a defensive check beforehand, and prevent the action if their session is expired. Thanks for any ideas. -- View this message in context: http://shiro-user.582556.n2.nabble.com/possible-to-add-exceptions-to-expired-session-redirect-tp7578949.html Sent from the Shiro User mailing list archive at Nabble.com.
