Senior Member
I think your User objects needs to contain the domain:username style value. This value is used in all sorts of places so it needs to contain the fully qualified username to work. As for checking the authentication everytime, this will only happen if you configure it to do this. I'm pretty sure it doesn't do this by default. I'm not quite sure what the question about "returnUsername" is.
Junior Member
Finally
Hi there!
Just wanted to tell you that I finally decided to go with the domain:username concatenation way. It works well. I just had to subclass three classes:
org.acegisecurity.ui.webapp.AuthenticationProcessi ngFilter
- to parse the domain, username and password and concatenate the domain and the real username in the "username" field -- attemptAuthentication(...), obtainUsername(...).
org.acegisecurity.userdetails.jdbc.JdbcDaoImpl
- to split the concatenated username and use the domain and real username for getting the user details from the DB -- loadUserByUsername(...)
org.acegisecurity.userdetails.User
- to add the domain and realUsername.
Please note: DO NOT use ":" delimiter if you intend to use the Remember Me functionality, because the latter function won't work as it uses ":" as its delimiter and won't split the cookie correctly if ":" is found in *our* concatenated username.
Thank you Karl Moore for your feedbacks. You were right, it is very important to keep the username concatenated in the User object, and add a new field ie realUsername to get the unconcatenated username.
Have a nice development!
- Kexkey
Senior Member
Thanks for posting back, glad you got it all working! That was a good point about RememberMe I hadn't really thought about that.
Posting Permissions
