<bean id="authenticationProcessingFilterEntryPoint"
class="org.springframework.security.ui.webapp.AuthenticationProcessingFilterEntryPoint">
- <property name="loginFormUrl" value="/getCredentials.security" />
+ <property name="loginFormUrl" value="/getCredentials.ria" />
<property name="forceHttps" value="false" />
</bean>
<security:http entry-point-ref="authenticationProcessingFilterEntryPoint">
- <security:intercept-url pattern="/**"
+ <security:intercept-url pattern="/*.security"
access="ROLE_USER,ROLE_ADMIN" />
- <security:logout logout-url="/logout.ria" />
+ <security:intercept-url pattern="/*.ria"
+ access="ROLE_ANONYMOUS,ROLE_USER" />
+ <security:logout logout-url="/logout.ria"
+ logout-success-url="/getCredentials.ria" />
+ <security:anonymous username="anonymous"
+ granted-authority="ROLE_ANONYMOUS" />
</security:http>
<bean id="authenticationProcessingFilter"
class="org.springframework.security.ui.webapp.AuthenticationProcessingFilter">
<security:custom-filter position="AUTHENTICATION_PROCESSING_FILTER" />
<property name="authenticationManager" ref="_authenticationManager" />
- <property name="authenticationFailureUrl" value="/getCredentials.security" />
- <property name="defaultTargetUrl" value="/getCredentials.security" />
+ <property name="authenticationFailureUrl" value="/getCredentials.ria" />
+ <property name="defaultTargetUrl" value="/getCredentials.ria" />
<property name="filterProcessesUrl" value="/login.ria" />
<property name="usernameParameter" value="username" />
<property name="passwordParameter" value="password" />
import org.argeo.security.ArgeoSecurityService;
import org.argeo.security.ArgeoUser;
+import org.argeo.security.SimpleArgeoUser;
import org.argeo.server.BooleanAnswer;
import org.argeo.server.ServerAnswer;
import org.argeo.server.ServerDeserializer;
/* USER */
- @RequestMapping("/getCredentials.security")
+ @RequestMapping("/getCredentials.ria")
@ModelAttribute(ANSWER_MODEL_KEY)
public ArgeoUser getCredentials() {
- return securityService.getSecurityDao().getCurrentUser();
+ ArgeoUser argeoUser = securityService.getSecurityDao().getCurrentUser();
+ if (argeoUser == null)
+ return new SimpleArgeoUser();
+ else
+ return argeoUser;
}
-// @RequestMapping("/login.security")
-// @ModelAttribute(ANSWER_MODEL_KEY)
-// public ArgeoUser login(@RequestParam("username") String username,
-// @RequestParam("password") String password) {
-// //SecurityContextHolder.getContext().getAuthentication().
-// return securityService.getSecurityDao().getCurrentUser();
-// }
-//
-// @RequestMapping("/logout.security")
-// @ModelAttribute(ANSWER_MODEL_KEY)
-// public ServerAnswer logout() {
-// return ServerAnswer.ok("Logged out");
-// }
+ // @RequestMapping("/login.security")
+ // @ModelAttribute(ANSWER_MODEL_KEY)
+ // public ArgeoUser login(@RequestParam("username") String username,
+ // @RequestParam("password") String password) {
+ // //SecurityContextHolder.getContext().getAuthentication().
+ // return securityService.getSecurityDao().getCurrentUser();
+ // }
+ //
+ // @RequestMapping("/logout.security")
+ // @ModelAttribute(ANSWER_MODEL_KEY)
+ // public ServerAnswer logout() {
+ // return ServerAnswer.ok("Logged out");
+ // }
@RequestMapping("/getUsersList.security")
@ModelAttribute(ANSWER_MODEL_KEY)