here you wrote filters=”none”. if you replace this with access=”IS_AUTHENTICATED_ANONYMOUSLY” browser goes to unstoppable redirecting. do you know what is it?
Also spring security error handling dissapeared – server HTTP Status 401 error page now appears.

Any idea pls? I appreciate it

@Override
protected void onUnsuccessfulAuthentication(HttpServletRequest request,
HttpServletResponse response, AuthenticationException failed) throws AuthenticationException, IOException
{
throw new BadCredentialsException(”Log In information not valid: Please enter a valid Username and associated Password.”);
}

after “because for the username I can do ”
And before “But because the object ”
Sorry for the mess..

“you don’t necessarily need to do all this work just to put your user’s details in the session. You can instead write a custom UserDetailsService which returns an extended User object (or your own implementation of UserDetails) which contains your user details.”

I followed the article and I implemented my UserDetailsService, but now How do I get user details from the session? I mean, in a JSP page how do I get for example the user email? because for the username I can do

But because the object “Principal” has a method called .getName()
How can I do a similar thing with other user details?

Many thanks in advance for the answer
Dario

Thanks for the post.
I have a requirement. After successful login the user is taken to the welcome page. From there he can click on a link to navigate to another page. In the second page, I need to display some details regarding the user logged in. So my requirement is, when the user clicks the link in Welcome page, it should be taken to the controller where there will be come calculations and store the value in a session variable. When the page is rendered, then the value is to be displayed .So my doubt is how we can access the session variable in Controller java classes. Or is there any other way to attain this functionality.

Please give me some pointers. I am new to spring. My application is using struts 2, spring, spring security and hibernate

Thanks,
SDB

Thanks for this article. It certainly helps to resolve one issue I’m having.

What I now need is a way to have multiple elements in my web site. One which uses the auto-config=true (standard form based auth), and one which uses a custom element for RESTful access, with it’s own AuthEntryPoint.

I can easily create two filter-mappings in web.xml, but I have two problems :

a) Spring security (2.0.4) does not allow multiple http elements in your applicationContext files.
b) Most of the beans in my application are going to be shared with both the access points in my site (form based and REST based)

I’ve searched around, but haven’t found any examples on getting this resolved.

Would you have any suggestions on how would I go about doing that ?

Thanks,

Jalpesh.