Address SessionLimitStrategy

Closes gh-16206

Author: claudenirmachado

web/src/main/java/org/springframework/security/web/session/SessionLimitStrategy.java

@@ -42,7 +42,7 @@ public interface SessionLimitStrategy extends Function<Authentication, Integer>
 	 * @return a {@link SessionLimitStrategy} instance that returns the given value.
 	 */
 	static SessionLimitStrategy of(int maxSessions) {
-		Assert.isTrue(maxSessions != 0 && maxSessions >= -1,
+		Assert.isTrue(maxSessions != 0,
 				"MaximumLogins must be either -1 to allow unlimited logins, or a positive integer to specify a maximum");
 		return (authentication) -> maxSessions;
 	}

web/src/test/java/org/springframework/security/web/session/SessionLimitStrategyTests.java

@@ -35,24 +35,23 @@ class SessionLimitStrategyTests {
 	private final Authentication authentication = Mockito.mock(Authentication.class);
 
 	@Test
-	void testUnlimitedInstanceTest() {
+	void testUnlimitedInstance() {
 		SessionLimitStrategy sessionLimit = SessionLimitStrategy.UNLIMITED;
 		int result = sessionLimit.apply(this.authentication);
 		assertThat(result).isEqualTo(-1);
 	}
 
 	@ParameterizedTest
 	@ValueSource(ints = { -1, 1, 2, 3 })
-	void testInstanceWithValidMaxSessionsTest(int maxSessions) {
+	void testInstanceWithValidMaxSessions(int maxSessions) {
 		SessionLimitStrategy sessionLimit = SessionLimitStrategy.of(maxSessions);
 		int result = sessionLimit.apply(this.authentication);
 		assertThat(result).isEqualTo(maxSessions);
 	}
 
-	@ParameterizedTest
-	@ValueSource(ints = { -4, -3, -2, 0 })
-	void testInstanceWithInvalidMaxSessionsTest(int maxSessions) {
-		assertThatIllegalArgumentException().isThrownBy(() -> SessionLimitStrategy.of(maxSessions))
+	@Test
+	void testInstanceWithInvalidMaxSessions() {
+		assertThatIllegalArgumentException().isThrownBy(() -> SessionLimitStrategy.of(0))
 			.withMessage(
 					"MaximumLogins must be either -1 to allow unlimited logins, or a positive integer to specify a maximum");
 	}