what's the authenticati object saved in session after logon?

**creatxr** · Apr 19th, 2005, 08:29 PM

what's the authentication object saved in session after logon?

**Ben Alex** · Apr 20th, 2005, 06:41 AM

See HttpSessionContextIntegrationFilter, which also provides an ACEGI_SECURITY_CONTEXT_KEY for your convenience.

**creatxr** · May 7th, 2005, 02:39 AM

what's the type of object stored in session?

is it myself implemented UserDetails?

**Ben Alex** · May 7th, 2005, 04:15 AM

Your UserDetails (as returned by AuthenticationDao) is accessible from the Authentication object's getPrincipal() method. You can get the Authentication from the ContextHolder. Please note from 0.9.0 (and current CVS) the ContextHolder has been refactored and you'll need to use SecurityContext.getAuthentication() instead.

**creatxr** · May 8th, 2005, 05:06 AM

could you show me a exmaple?

such as

ContextHolder ccc = (ContextHolder)session.getAttribute("KEY")
ccc.getXXX

to get myself UserDetailsImpl Object

thanks.

**Ben Alex** · May 8th, 2005, 06:39 PM

For release 0.8.2 and earlier:

Code:

UserDetails userDetails = &#40;UserDetails&#41; &#40;&#40;SecureContext&#41;ContextHolder.getContext&#40;&#41;&#41;.getAuthentication&#40;&#41;.getPrincipal&#40;&#41;

For release 0.9.0 and above (and current CVS):

Code:

UserDetails userDetails = &#40;UserDetails&#41; SecurityContextHolder.getContext&#40;&#41;.getAuthentication&#40;&#41;.getPrincipal&#40;&#41;

Thread: what's the authenticati object saved in session after logon?

Thread Tools

Display

what's the authenticati object saved in session after logon?

Similar Threads

OpenSessionInView and portlet support

Domain Models and Validation – An Architectural Discussion

OpenSessionInView + CMT Session usage

Loosing my SecureContext

Hibernate Session Per Request Problem with CMT EJB

Posting Permissions