Results 1 to 1 of 1

Thread: always-use-default-target="false" does not work using openid login

  1. Jan 22nd, 2012, 04:19 AM #1
    Toub
    Toub is offline Junior Member
    Join Date
    Jan 2012
    Posts
    1

    Unhappy User always redirected to root path "/" after openId authentication

    Hi all,

    I am using openId authentication with Spring Security 3.0.5.RELEASE, but I can't make my user be redirected to its inital url after authentication.

    In my case, the initial url (before auth) is http://localhost:8080/my-web-app/admin/shop, but the user is always redirected to root.

    It is a valid url, and always-use-default-target is set to false.

    I am using the following security configuration:

    Code:
    <http auto-config='true' use-expressions="true">

		<intercept-url pattern="/admin/security/**" access="hasRole('SUPER_ADMIN')" />
		<intercept-url pattern="/direct/admin/security/**"
			access="hasRole('SUPER_ADMIN')" />
		<intercept-url pattern="/admin/**"
			access="hasAnyRole('ADMIN','SUPER_ADMIN')" />
		<intercept-url pattern="/direct/admin/**"
			access="hasAnyRole('ADMIN','SUPER_ADMIN')" />

		<logout logout-url="/logout" />

		<openid-login login-page="/login" user-service-ref="openIdUserDetailsService"
			authentication-success-handler-ref="openIDAuthenticationSuccessHandler"
			always-use-default-target="false">
			<attribute-exchange>
				<openid-attribute name="email"
					type="http://axschema.org/contact/email" required="true" />
				<openid-attribute name="oiContactEmail"
					type="http://schema.openid.net/contact/email" required="true" />
				<openid-attribute name="fullname"
					type="http://axschema.org/namePerson" required="true" />
				<openid-attribute name="nickname"
					type="http://axschema.org/namePerson/friendly" required="true" />
				<openid-attribute name="axNamePersonFirstName"
					type="http://axschema.org/namePerson/first" required="true" />
				<openid-attribute name="axNamePersonLastName"
					type="http://axschema.org/namePerson/last" required="true" />
				<openid-attribute name="image"
					type="http://axschema.org/media/image/default" required="true" />
				<openid-attribute name="language"
					type="http://axschema.org/pref/language" required="true" />
				<openid-attribute name="country"
					type="http://axschema.org/contact/country/home" required="true" />
			</attribute-exchange>
		</openid-login>
	</http>
    ======

    User roles are setted in my bean openIDAuthenticationSuccessHandler implementing SimpleUrlAuthenticationSuccessHandler, could it be too late?
    If yes, is there an other way?

    =======

    SimpleUrlAuthenticationSuccessHandler herit from AbstractAuthenticationTargetUrlRequestHandler, and in method determineTargetUrl:
    Code:
     protected String determineTargetUrl(HttpServletRequest request, HttpServletResponse response) {
        if (isAlwaysUseDefaultTargetUrl()) {
            return defaultTargetUrl;
        }

        // Check for the parameter and use that if available
        String targetUrl = request.getParameter(targetUrlParameter);
    ... targetUrl is null.

    The parameter name is "spring-security-redirect". Where is this request parameter supposed to be set?
    Last edited by Toub; Jan 22nd, 2012 at 08:07 AM. Reason: Adding information about AbstractAuthenticationTargetUrlRequestHandler.determineTargetUrl
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules