Results 1 to 4 of 4

Thread: programatically login to spring security

  1. Jan 27th, 2013, 08:19 PM #1
    mcheung63
    mcheung63 is offline Junior Member
    Join Date
    Jan 2013
    Posts
    2

    Default programatically login to spring security

    Hi
    the "@PreAuthorize("isAuthenticated()")" not really working.

    I login like this:

    Code:
    List<GrantedAuthority> authorities = new ArrayList<GrantedAuthority>();
authorities.add(new GrantedAuthorityImpl("ROLE_USER"));
Authentication auth = new UsernamePasswordAuthenticationToken(username, password, authorities);
SecurityContext securityContext = SecurityContextHolder.getContext();
securityContext.setAuthentication(auth);

// Create a new session and add the security context.
request.getSession().setAttribute(HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY, securityContext);
    spring-security.xml:
    Code:
    <?xml version="1.0" encoding="UTF-8"?>
<beans:beans xmlns="http://www.springframework.org/schema/security"
	xmlns:beans="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
	xsi:schemaLocation="http://www.springframework.org/schema/beans 
                    http://www.springframework.org/schem...-beans-3.0.xsd
                    http://www.springframework.org/schema/security 
                    http://www.springframework.org/schema/security/spring-security-3.1.xsd">

	<http use-expressions="true">
		<form-login login-page="/index.htm" />
		<logout logout-url="/logout.htm" />
	</http>

	<global-method-security pre-post-annotations="enabled">
	</global-method-security>


	<authentication-manager alias="authenticationManager" />
</beans:beans>
    Please help
    thanks
    from Peter (cmk128@hotmail.com)
    Last edited by Rob Winch; Jan 28th, 2013 at 02:14 PM. Reason: added code tags
    Reply With Quote Reply With Quote
  2. Jan 28th, 2013, 02:12 PM #2
    Rob Winch
    Rob Winch is offline Senior Member Spring Team
    Join Date
    Jan 2008
    Posts
    1,826

    Default

    Quote Originally Posted by mcheung63 View Post
    Hi
    the "@PreAuthorize("isAuthenticated()")" not really working.
    This doesn't tell us much. How is it not working? What is the tag on? How are you creating the object that use @PreAuthorize?

    PS: In the future please use code tags for anything that requires formatting (i.e. code, config, logs, etc)
    Rob Winch - @rob_winch
    Spring Security Lead
    Pivotal
    Reply With Quote Reply With Quote
  3. Jan 28th, 2013, 07:26 PM #3
    mcheung63
    mcheung63 is offline Junior Member
    Join Date
    Jan 2013
    Posts
    2

    Default

    Hi
    Without login, i still able to jump into the controller, in the jsp can i dump out the role, so i am sure i haven't login yet.
    Reply With Quote Reply With Quote
  4. Jan 29th, 2013, 09:43 AM #4
    Rob Winch
    Rob Winch is offline Senior Member Spring Team
    Join Date
    Jan 2008
    Posts
    1,826

    Default

    See if this helps http://static.springsource.org/sprin...in-web-context
    Rob Winch - @rob_winch
    Spring Security Lead
    Pivotal
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules