Package org.springframework.security.ui.savedrequest

Examples of org.springframework.security.ui.savedrequest.SavedRequest

63
64
65
66
67
68
69
70
71
72
73
    if (e != null && isLoggedIn() && authenticationTrustResolver.isRememberMe(getAuthentication())) {
      // user has a cookie but is getting bounced because of IS_AUTHENTICATED_FULLY,
      // so Acegi won't save the original request
      request.getSession().setAttribute(
          AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY,
          new SavedRequest(request, portResolver));
    }

    if (errorPage != null || (ajaxErrorPage != null && request.getHeader(ajaxHeader) != null)) {
      boolean includePort = true;
      String scheme = request.getScheme();
View Full Code Here
63
64
65
66
67
68
69
70
71
72
73
        if (e != null && isLoggedIn() && authenticationTrustResolver.isRememberMe(getAuthentication())) {
            // user has a cookie but is getting bounced because of IS_AUTHENTICATED_FULLY,
            // so Acegi won't save the original request
            request.getSession().setAttribute(
                    AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY,
                    new SavedRequest(request, portResolver));
        }

        if (errorPage != null || (ajaxErrorPage != null && request.getHeader(ajaxHeader) != null)) {
            boolean includePort = true;
            String scheme = request.getScheme();
View Full Code Here
143
144
145
146
147
148
149
150
151
152
153
    private SavedRequest getSavedRequest(ServletRequest request) {
        HttpServletRequest httpRequest = (HttpServletRequest) request;
       
        HttpSession httpSession = httpRequest.getSession(false);
        if (httpSession == null) {
            return new SavedRequest(httpRequest, new PortResolverImpl());
        } else {
            return (SavedRequest) httpSession.getAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY);
        }
       
    }
View Full Code Here
8
9
10
11
12
13
14
15
16
    public void testSecuredPageGivesRedirectWhenLoggedOut() {
        logout();
        tester.startPage(LayerPage.class);
        tester.assertRenderedPage(GeoServerLoginPage.class);
        // make sure the spring security emulation is properly setup
        SavedRequest sr = (SavedRequest) tester.getServletSession().getAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY);
        assertNotNull(sr);
        assertTrue(sr.getFullRequestUrl().endsWith("?wicket:bookmarkablePage=:org.geoserver.web.data.layer.LayerPage"));
    }
View Full Code Here
30
31
32
33
34
35
36
37
38
39
40
        Authentication auth = getSession().getAuthentication();
        if(auth == null || !auth.isAuthenticated() || auth instanceof AnonymousAuthenticationToken) {
            // emulate what spring security url control would do so that we get a proper redirect after login
            HttpServletRequest httpRequest = ((WebRequest) getRequest()).getHttpServletRequest();
            ExceptionTranslationFilter translator = (ExceptionTranslationFilter) getGeoServerApplication().getBean("consoleExceptionTranslationFilter");
            SavedRequest savedRequest = new SavedRequest(httpRequest, translator.getPortResolver());
           
            HttpSession session = httpRequest.getSession();
            session.setAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY, savedRequest);
           
            // then redirect to the login page
View Full Code Here
25
26
27
28
29
30
31
32
33
34
35
    @Autowired
    UserviewDefinitionDao userviewDefinitionDao;

    @RequestMapping("/login")
    public String login(ModelMap map, HttpServletRequest request, HttpServletResponse response) throws Exception {
        SavedRequest savedRequest = (SavedRequest) request.getSession().getAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY);
        String savedUrl = "";
        if (savedRequest != null) {
            savedUrl = UrlUtils.getRequestUrl(savedRequest);
        } else if (request.getHeader("referer") != null) { //for userview logout
            savedUrl = request.getHeader("referer");
View Full Code Here
649
650
651
652
653
654
655
656
657
658
659
                SecurityContextHolder.getContext().setAuthentication(result);

                // generate new session to avoid session fixation vulnerability
                HttpSession session = httpRequest.getSession(false);
                if (session != null) {
                    SavedRequest savedRequest = (SavedRequest) session.getAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY);
                    session.invalidate();
                    session = httpRequest.getSession(true);
                    if (savedRequest != null) {
                        session.setAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY, savedRequest);
                    }
View Full Code Here
169
170
171
172
173
174
175
176
177
178
179
    protected void onSuccessfulAuthentication(HttpServletRequest request, HttpServletResponse response,
            Authentication authResult) throws IOException {
        // CUSTOM: generate new session to avoid session fixation vulnerability
        HttpSession session = request.getSession(false);
        if (session != null) {
            SavedRequest savedRequest = (SavedRequest) session.getAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY);
            session.invalidate();
            session = request.getSession(true);
            if (session != null && savedRequest != null) {
                session.setAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY, savedRequest);
            }
View Full Code Here
125
126
127
128
129
130
131
132
133
134
135
       
        if (requiresAuth) {
            // generate new session to avoid session fixation vulnerability
            HttpSession session = request.getSession(false);
            if (session != null) {
                SavedRequest savedRequest = (SavedRequest) session.getAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY);
                session.invalidate();
                session = request.getSession(true);
                if (savedRequest != null) {
                    session.setAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY, savedRequest);
                }
View Full Code Here
277
278
279
280
281
282
283
284
285
286
287
                ((TargetUrlResolverImpl)resolver).setJustUseSavedRequestOnGet(true);
            }
           
            HttpSession session = request.getSession(false);
            if (session != null) {
                SavedRequest savedRequest = (SavedRequest) session.getAttribute(AbstractProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY);
            }
            // default spring security login
            super.successfulAuthentication(request, response, authResult);
        }
    }
View Full Code Here
TOP

Related Classes of org.springframework.security.ui.savedrequest.SavedRequest

  • org.codehaus.groovy.grails.plugins.springsecurity.GrailsAccessDeniedHandlerImpl
  • org.geoserver.web.GeoServerSecuredPage
  • org.geoserver.web.GeoServerSecuredPageTest
  • org.joget.apps.app.controller.LoginWebController
  • org.joget.apps.workflow.controller.DirectoryJsonController
  • org.joget.apps.workflow.controller.WorkflowBasicProcessingFilter
  • org.joget.apps.workflow.security.WorkflowHttpAuthProcessingFilter
  • org.netcools.forum.security.AntPatternBasedAuthenticationEntryPointChain
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.