From d6e5dbbcfdc29f8363e059d7af5d246bc655f80d Mon Sep 17 00:00:00 2001
From: Luke Taylor <luke.taylor@springsource.com>
Date: Sun, 13 Apr 2008 20:22:31 +0000
Subject: [PATCH] SEC-767: Added override for flushBuffer in response wrapper.

---
 .../security/ui/SessionFixationProtectionFilter.java         | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/core/src/main/java/org/springframework/security/ui/SessionFixationProtectionFilter.java b/core/src/main/java/org/springframework/security/ui/SessionFixationProtectionFilter.java
index 89b461e404..90e1e05f9c 100644
--- a/core/src/main/java/org/springframework/security/ui/SessionFixationProtectionFilter.java
+++ b/core/src/main/java/org/springframework/security/ui/SessionFixationProtectionFilter.java
@@ -150,6 +150,11 @@ public class SessionFixationProtectionFilter extends SpringSecurityFilter {
             startNewSession();
             super.sendRedirect(location);
         }
+        
+        public void flushBuffer() throws IOException {
+            startNewSession();
+            super.flushBuffer();
+        }
 
         /**
          * Calls <code>startNewSessionIfRequired()</code>