Search:

Hi,

Thanks a lot for this information, i will surely try this alternative.

Currently this is solved by setting null for ACEGI_SAVED_REQUEST_KEY from session if it has ajax method. So the error...

Hi,

I have a problem using spring security 2.0.

My home page is using ajax and requesting a servlet on 10 sec everytime.
Now, if my session is invalidated, and i relogin - instead of...

Hi,

In my application, all http urls are redirected to https.

If you want to do so try following

<entry key="8080"><value>443</value></entry>

let me know if it is working or not

Hi,

Please try using

<property name="continueChainBeforeSuccessfulAuthentication" value="true"/>

for authenticationProcessingFilter bean.

It should work..

Hi,

I have not tried it..but found following

'/j_spring_security_logout' of LogoutFilter is similar to '/j_spring_security_check' of AuthenticationProcessingFilter but for logout.

E.g....

I am not sure regarding your security-context.xml.
But what i know is if you want to customize spring security.. you need to write authenticationprocessingfilter with appropriate property values in...

Hi,

What I understand from your question is, you want to stay on the same page once you are successfully authenticated by the login pop up?

Is it redirecting to defaultTargetURL? which is your...

Hi,

Can you please provide details, that what problem you are facing while implementing spring security?

Thanks,
Nisha

Hi,

You want to make url secure..means..u you want to redirect from http to https..! right.!

You can do this by using channelProcessingFilter in spring - applicationcontext-security.xml file.
...

Hi,

If above solution does not work, have a look at following link. It might help you.

http://forum.springsource.org/showthread.php?t=59984

- Nisha

Yes, I think you have to customized exceptionTranslationFilter

<bean id="exceptionTranslationFilter" class="org.acegisecurity.ui.ExceptionTranslationFilter">
<property name="accessDeniedHandler"...

Hi,

Your problem is you can not see your first page login.jsp for entering authentication details? If yes then please check where is your login.jsp in web app?

It should be out side of...

Hi,

I have used Spring 2.5.5 and implemented remember me functionality by extending AuthenticationProcessingFilter and implementing customized 'onSuccessfulAuthentication' method. (Not with ldap)...

Hi Kedi,

For customization, you have to implement 'UserDetails' interface and create your own class, having customized getPassword() method.

Hope it helps.

Thanks,
Nisha

Thanks...

That's a good input for handling role differently..

You can do this customization by following ways.

1. Customize 'loadUserByUsername' method by extending UserDetailsService. This new class should have following method.

public UserDetails...

Yes you are correct.

But in certain cases, we have to show some pages/links to only admin role and not to any other roles. So in that case we can use if/else construct right?

Is there any other...

Hi,

Yes as per the documentation of ProviderManager untill it founds not null response providers will get called.

I tried with two different providers, and if response found from first...

Hi,

Can you please give some more information from your applicationcontext-security.xml regarding how you are using rolevoter and how you are preventing access?

Thanks,
Nisha

Hi,

I have used struts 2 tags with spring <sec:authorize>.

Example :
<s:if test="#session.isAdmin==true"> // Validation for admin role..
<sec:authorize <your validation> >
// Code goes...

Hi,

Yes you can display one more error message. But for that you have to extend 'JdbcDaoSupport(org.springframework.jdbc.core.support.JdbcDaoSupport)' class and implement UserDetailsService(import...