Beispiel #1
0
 // Handler deciding where to redirect user after successful login
 @Bean
 public SavedRequestAwareAuthenticationSuccessHandler successRedirectHandler() {
   SavedRequestAwareAuthenticationSuccessHandler successRedirectHandler =
       new SavedRequestAwareAuthenticationSuccessHandler();
   successRedirectHandler.setDefaultTargetUrl("/landing");
   return successRedirectHandler;
 }
Beispiel #2
0
    @Override
    public void onAuthenticationSuccess(
        HttpServletRequest request, HttpServletResponse response, Authentication authentication)
        throws ServletException, IOException {
      DefaultSavedRequest defaultSavedRequest =
          (DefaultSavedRequest)
              request.getSession().getAttribute("SPRING_SECURITY_SAVED_REQUEST_KEY");

      if (defaultSavedRequest != null) {
        log.debug("saved url: " + defaultSavedRequest.getRedirectUrl());
        getRedirectStrategy().sendRedirect(request, response, defaultSavedRequest.getRedirectUrl());
      } else {
        super.onAuthenticationSuccess(request, response, authentication);
      }
    }
Beispiel #3
0
 @Override
 public void onAuthenticationSuccess(
     HttpServletRequest request, HttpServletResponse response, Authentication authentication) {
   log.info("Usuário [" + authentication.getName() + "] autenticado com sucesso.");
   request.getSession().setAttribute("usuarioLogado", authentication.getDetails());
   try {
     super.onAuthenticationSuccess(request, response, authentication);
   } catch (ServletException e) {
     log.error(
         "Ocorreu um erro ao redirecionar para a pagina principal [" + e.getMessage() + "].", e);
   } catch (IOException e) {
     log.error(
         "Ocorreu um erro ao redirecionar para a pagina principal [" + e.getMessage() + "].", e);
   }
 }
Beispiel #4
0
  @Override
  public void onAuthenticationSuccess(
      HttpServletRequest request, HttpServletResponse response, Authentication authentication)
      throws ServletException, IOException {
    Object principal = authentication.getPrincipal();
    IUserDetailsVOWrapper userDetailsVOWrapper =
        (principal instanceof IUserDetailsVOWrapper) ? (IUserDetailsVOWrapper) principal : null;
    UserDetailsVO userDetailsVO = userDetailsVOWrapper.getUserDetailsVO();
    if (userDetailsVO != null) {

      //			if (request.getServletContext().getFilterRegistration("areaFilter") != null) { // TODO
      //				AreaDetailsManager.setCurrAreaDetailsVO(request.getSession(),
      // AreaDetailsManager.getCityAreaDetailsVO(userDetailsVO.getAreaCd()));
      //			}

      //			userDetailsVO.setIp(HttpUtil.getRemoteAddr(request));
      //			userDetailsVO.setAdvertisingMedia(GlobalVars.getAdvertisingMedia(request));

      //			if (casAvailable) {
      //    			if (authentication instanceof CasAuthenticationToken) {
      //    				CasAuthenticationToken cat = (CasAuthenticationToken) authentication;
      ////    				userDetailsVO.setLoginAcctNo(cat.getAssertion().getPrincipal().getName());
      //    			} else if (authentication instanceof CasAssertionAuthenticationToken) {
      //    				CasAssertionAuthenticationToken casat = (CasAssertionAuthenticationToken)
      // authentication;
      ////    				userDetailsVO.setLoginAcctNo(casat.getAssertion().getPrincipal().getName());
      //    			}
      //			}
    }

    if ("ssoFrame".equalsIgnoreCase(request.getParameter("type"))) { // /loginCheck
      RequestCache requestCache =
          ReflectUtil.getFieldValue(this, "requestCache", RequestCache.class);
      SavedRequest savedRequest = requestCache.getRequest(request, response);
      if (savedRequest == null) {
        if (!response.isCommitted()) {
          String targetUrl = determineTargetUrl(request, response);
          DefaultRedirectStrategy redirectStrategy =
              (DefaultRedirectStrategy) this.getRedirectStrategy();
          String redirectUrl =
              (String)
                  ReflectUtil.invokeMethod(
                      redirectStrategy,
                      "calculateRedirectUrl",
                      new Object[] {request.getContextPath(), targetUrl});
          redirectUrl = response.encodeRedirectURL(redirectUrl);

          HttpSession session = request.getSession(true);
          String ssoAuto = (String) session.getAttribute("_SECURITY_SSO_AUTO"); // 自动登录
          if (Boolean.parseBoolean(ssoAuto)) {
            session.removeAttribute("_SECURITY_SSO_AUTO");
            String callbackUrl = (String) session.getAttribute("_SECURITY_SSO_CALLBACK_URL");
            session.removeAttribute("_SECURITY_SSO_CALLBACK_URL");

            redirectStrategy.sendRedirect(
                request, response, StringUtil.defaultIfBlank(callbackUrl, redirectUrl));
          } else {
            redirectStrategy.sendRedirect(
                request, response, ssoFrameTargetUrl + "?targetUrl=" + redirectUrl);
          }
        }

        clearAuthenticationAttributes(request);
      } else {
        requestCache.removeRequest(request, response);
        clearAuthenticationAttributes(request);
        this.getRedirectStrategy()
            .sendRedirect(
                request,
                response,
                ssoFrameTargetUrl + "?targetUrl=" + savedRequest.getRedirectUrl());
      }
    } else if (isAjaxRequest(request)) {
      this.onAuthenticationSuccessForAjax(request, response, authentication);
    } else {
      super.onAuthenticationSuccess(request, response, authentication);
    }

    EapContext.publish("#login.success", authentication);
  }
Beispiel #5
0
  @Override
  public void onAuthenticationSuccess(
      HttpServletRequest request, HttpServletResponse response, Authentication authentication)
      throws ServletException, IOException {

    HttpSession httpSession = request.getSession();
    httpSession.setAttribute(COCKPIT_USER_KEY, authentication.getPrincipal());
    Object principal = authentication.getPrincipal();

    if (principal instanceof CockpitUser) {
      CockpitUser cockpitUser = (CockpitUser) principal;
      Login login = new Login();
      login.setCockpitUser(cockpitUser);
      login.setLoginTime(new Date());
      login.setToken(UUID.randomUUID().toString().replace("-", ""));
      httpSession.setAttribute(LoginConstant.TOKEN_IN_SESSION, login.getToken());
      httpSession.setAttribute(LoginConstant.HANDLE_IN_SESSION, cockpitUser.getUsername());

      if (null != cockpitUser.getCockpitRoles()
          && cockpitUser.getCockpitRoles().contains(CockpitRole.ROLE_ADMIN)) {
        httpSession.setAttribute(LoginConstant.IS_ADMIN_IN_SESSION, true);
        logger.info("Admin [" + cockpitUser.getUsername() + "] logs in");
      } else {
        httpSession.setAttribute(LoginConstant.IS_ADMIN_IN_SESSION, false);
        logger.info("User: [" + cockpitUser.getUsername() + "] logs in");
      }

      loginMapper.insert(login);
      logger.info(
          "Account {Team: "
              + cockpitUser.getTeam().getName()
              + ", Member: "
              + cockpitUser.getUsername()
              + "} logs in");

      httpSession.removeAttribute(LoginConstant.LOGIN_SESSION_ERROR_KEY);

      Cookie cookie = new Cookie("JSESSIONID", request.getSession().getId());
      cookie.setPath("/");
      cookie.setSecure(false);
      response.addCookie(cookie);

      Object redirectURL = httpSession.getAttribute(LoginConstant.REDIRECT_URL_IN_SESSION);
      if (null != redirectURL && redirectURL.toString().trim().length() > 0) {
        String redirect = URLDecoder.decode(redirectURL.toString(), "UTF-8");
        StringBuilder stringBuilder = new StringBuilder(redirect);
        if (!redirect.contains("?")) {
          stringBuilder.append("?");
        } else {
          stringBuilder.append("&");
        }
        stringBuilder.append("token=").append(login.getToken());
        // remove redirect url in session.
        httpSession.removeAttribute(LoginConstant.REDIRECT_URL_IN_SESSION);

        response.sendRedirect(stringBuilder.toString());
        return;
      }

    } else {
      logger.error("Fatal error, principal should be a CockpitUser or sub-class instance");
    }

    super.onAuthenticationSuccess(request, response, authentication);
  }