Spring Security 使用action进行登录

最新推荐文章于 2024-05-25 08:08:58 发布

weixin_33682719

最新推荐文章于 2024-05-25 08:08:58 发布

阅读量450

点赞数

文章标签： java

原文链接：http://blog.51cto.com/libangsen/1320120

版权

UserDetails userDetails = accountDao.getAccountByLoginName(username);

// 密码加密,salt可以为空，表示不加添加剂

String encodedPassword = passwordEncoder.encodePassword(password, null);

if (userDetails.getPassword().equals(encodedPassword)) {

Authentication authentication = new UsernamePasswordAuthenticationToken(userDetails, userDetails.getPassword(),userDetails.getAuthorities());

// spring security 将权限及用户信息存入securityContext

SecurityContext securityContext = SecurityContextHolder.getContext();

securityContext.setAuthentication(authentication);

ActionContext ctx = ActionContext.getContext();

HttpServletRequest request = (HttpServletRequest)ctx.get(ServletActionContext.HTTP_REQUEST);

HttpSession session = request.getSession(true);

HttpServletResponse response = (HttpServletResponse)ctx.get(ServletActionContext.HTTP_RESPONSE);

response.setHeader("P3P", "CP=CAO PSA OUR"); //用于ajax请求保存session

session.setAttribute("SPRING_SECURITY_CONTEXT", securityContext); //将用户信息放入session

}

转载于:https://blog.51cto.com/libangsen/1320120

确定要放弃本次机会？

福利倒计时

: :

立减 ¥

普通VIP年卡可用

关注关注