Validator with HttpServletRequest access

**tag** · Apr 27th, 2005, 07:22 AM

I am asking myself how I could use the validator facility to do more complex tasks than simply checking fields for value ranges and such. To do that i'd need access to the HttpServletRequest to implement validation routines like these:

Code:

public void validate&#40;Object obj, Errors errors, HttpServletRequest request&#41; &#123;
Certificate certificate = &#40;Certificate&#41; obj;
User user = &#40;User&#41; request.getSession&#40;&#41;.getAttribute&#40;"user"&#41;;
if &#40;!certificate.getUser&#40;&#41;.getId&#40;&#41;.equals&#40;user.getId&#40;&#41;&#41;&#41; &#123;
// User is trying to access an object he does not own
    errors.rejectValue&#40;"certificate", "error.wrong.user.access", null, "Illegal user access"&#41;;
&#125;
&#125;

Unfortunately this is currently not possible because validate has only access to Object and Errors. Any ideas how to circumvent this limitation?

**Gerben ten Wolde** · Apr 28th, 2005, 04:46 PM

One solution could be to override the onBindAndValidate method in the form itself. This would get the job done, but it would split your validation over more than on object which is a shame.

Hope this helps

**tag** · Apr 29th, 2005, 02:17 AM

Hmm, that sound like either i am missing something or this should be a feature request !?

Thread: Validator with HttpServletRequest access

Thread Tools

Display

Validator with HttpServletRequest access

Similar Threads

Any experience w access manager/identity server integration?

sometimes FilterSecurityInterceptor lets a user access

Access to model

Access key-values jdom doc passed by model in a jsp view.

OpenSessionInView pattern, non-request-triggered data access

Posting Permissions