You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@struts.apache.org by Wes Wannemacher <we...@wantii.com> on 2010/03/16 22:15:52 UTC
Re: Getting the authenticated user from Spring Security for use in an
Action
What mechanism are you using to handle authentication/authorization?
-Wes
On Tue, Mar 16, 2010 at 5:14 PM, Lance Hill <la...@baldhead.com> wrote:
> I need to access information about the currently logged in user. I don't
> think putting the user into the session during login is how it is supposed
> to be done, but I have not found examples of how to get access to the
> current user from Spring/Spring Security. Can someone please provide a link
> or brief example of the best practice?
>
>
> Thank you.
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
>
>
--
Wes Wannemacher
Head Engineer, WanTii, Inc.
Need Training? Struts, Spring, Maven, Tomcat...
Ask me for a quote!
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org
RE: Getting the authenticated user from Spring Security for use in an Action
Posted by Lance Hill <la...@baldhead.com>.
I used the same method to obtain the Authentication, but it returns as null.
The user is logged in since it gets to the protected page I am accessing.
Any thoughts on how to get the properly populated SecurityContext?
-----Original Message-----
From: Wes Wannemacher [mailto:wesw@wantii.com]
Sent: Tuesday, March 16, 2010 5:54 PM
To: Struts Users Mailing List
Subject: Re: Getting the authenticated user from Spring Security for use in
an Action
I use -
SecurityContextHolder.getContext().getAuthentication()
I assume that if the object returned is null, then the user isn't logged in.
I am using spring-security 2.0.4.
-Wes
On Tue, Mar 16, 2010 at 5:42 PM, Lance Hill <la...@baldhead.com> wrote:
> I have Spring Security set up to use CasAutheticationProvider to provide a
> UserDetails object.
>
> I did find an example that uses the SecurityContext to obtain an
> Authentication object and grab the UserDetails from there. I am not sure
how
> to get access to the populated SecurityContext since
> SecurityContextHolder.getContext() is returning an empty SecurityContext
and
> I am not sure if that is the best way to access the user.
>
>
> -----Original Message-----
> From: Wes Wannemacher [mailto:wesw@wantii.com]
> Sent: Tuesday, March 16, 2010 5:16 PM
> To: Struts Users Mailing List
> Subject: Re: Getting the authenticated user from Spring Security for use
in
> an Action
>
> What mechanism are you using to handle authentication/authorization?
>
> -Wes
>
> On Tue, Mar 16, 2010 at 5:14 PM, Lance Hill <la...@baldhead.com> wrote:
>> I need to access information about the currently logged in user. I don't
>> think putting the user into the session during login is how it is
supposed
>> to be done, but I have not found examples of how to get access to the
>> current user from Spring/Spring Security. Can someone please provide a
> link
>> or brief example of the best practice?
>>
>>
>> Thank you.
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
>> For additional commands, e-mail: user-help@struts.apache.org
>>
>>
>
>
>
> --
> Wes Wannemacher
>
> Head Engineer, WanTii, Inc.
> Need Training? Struts, Spring, Maven, Tomcat...
> Ask me for a quote!
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
>
>
--
Wes Wannemacher
Head Engineer, WanTii, Inc.
Need Training? Struts, Spring, Maven, Tomcat...
Ask me for a quote!
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org
Re: Getting the authenticated user from Spring Security for use in an
Action
Posted by Wes Wannemacher <we...@wantii.com>.
I use -
SecurityContextHolder.getContext().getAuthentication()
I assume that if the object returned is null, then the user isn't logged in.
I am using spring-security 2.0.4.
-Wes
On Tue, Mar 16, 2010 at 5:42 PM, Lance Hill <la...@baldhead.com> wrote:
> I have Spring Security set up to use CasAutheticationProvider to provide a
> UserDetails object.
>
> I did find an example that uses the SecurityContext to obtain an
> Authentication object and grab the UserDetails from there. I am not sure how
> to get access to the populated SecurityContext since
> SecurityContextHolder.getContext() is returning an empty SecurityContext and
> I am not sure if that is the best way to access the user.
>
>
> -----Original Message-----
> From: Wes Wannemacher [mailto:wesw@wantii.com]
> Sent: Tuesday, March 16, 2010 5:16 PM
> To: Struts Users Mailing List
> Subject: Re: Getting the authenticated user from Spring Security for use in
> an Action
>
> What mechanism are you using to handle authentication/authorization?
>
> -Wes
>
> On Tue, Mar 16, 2010 at 5:14 PM, Lance Hill <la...@baldhead.com> wrote:
>> I need to access information about the currently logged in user. I don't
>> think putting the user into the session during login is how it is supposed
>> to be done, but I have not found examples of how to get access to the
>> current user from Spring/Spring Security. Can someone please provide a
> link
>> or brief example of the best practice?
>>
>>
>> Thank you.
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
>> For additional commands, e-mail: user-help@struts.apache.org
>>
>>
>
>
>
> --
> Wes Wannemacher
>
> Head Engineer, WanTii, Inc.
> Need Training? Struts, Spring, Maven, Tomcat...
> Ask me for a quote!
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
>
>
--
Wes Wannemacher
Head Engineer, WanTii, Inc.
Need Training? Struts, Spring, Maven, Tomcat...
Ask me for a quote!
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org
RE: Getting the authenticated user from Spring Security for use in an Action
Posted by Lance Hill <la...@baldhead.com>.
I have Spring Security set up to use CasAutheticationProvider to provide a
UserDetails object.
I did find an example that uses the SecurityContext to obtain an
Authentication object and grab the UserDetails from there. I am not sure how
to get access to the populated SecurityContext since
SecurityContextHolder.getContext() is returning an empty SecurityContext and
I am not sure if that is the best way to access the user.
-----Original Message-----
From: Wes Wannemacher [mailto:wesw@wantii.com]
Sent: Tuesday, March 16, 2010 5:16 PM
To: Struts Users Mailing List
Subject: Re: Getting the authenticated user from Spring Security for use in
an Action
What mechanism are you using to handle authentication/authorization?
-Wes
On Tue, Mar 16, 2010 at 5:14 PM, Lance Hill <la...@baldhead.com> wrote:
> I need to access information about the currently logged in user. I don't
> think putting the user into the session during login is how it is supposed
> to be done, but I have not found examples of how to get access to the
> current user from Spring/Spring Security. Can someone please provide a
link
> or brief example of the best practice?
>
>
> Thank you.
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
>
>
--
Wes Wannemacher
Head Engineer, WanTii, Inc.
Need Training? Struts, Spring, Maven, Tomcat...
Ask me for a quote!
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org