Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I have a Spring MVC app that does not protect updates of user data with transactions.
It assumes that only a single user is accessing the account data for that account at any one time.
However, if two users were to log in using the same authentication credentials, it is theoretically possible, although unlikely, for two database updates on the same user data to overlap and conflict.
Is there a simple way to protect against this in Spring Security?
Spring Security supports protection against concurrent logins. See 2.3.3 Session Management for instructions of how to enable it.