Example usage for org.springframework.security.web.authentication SavedRequestAwareAuthenticationSuccessHandler setAlwaysUseDefaultTargetUrl

List of usage examples for org.springframework.security.web.authentication SavedRequestAwareAuthenticationSuccessHandler setAlwaysUseDefaultTargetUrl

  1. HOME
  2. Java
  3. org.springframework
  4. org.springframework.security.web.authentication.*
  5. SavedRequestAwareAuthenticationSuccessHandler
  6. setAlwaysUseDefaultTargetUrl

Introduction

In this page you can find the example usage for org.springframework.security.web.authentication SavedRequestAwareAuthenticationSuccessHandler setAlwaysUseDefaultTargetUrl.

Prototype

public void setAlwaysUseDefaultTargetUrl(boolean alwaysUseDefaultTargetUrl)

Source Link

Document

If true, will always redirect to the value of defaultTargetUrl (defaults to false).

Usage

From source file:nu.localhost.tapestry5.springsecurity.services.SecurityModule.java

@Marker(SpringSecurityServices.class)
public static UsernamePasswordAuthenticationFilter buildRealAuthenticationProcessingFilter(
        @SpringSecurityServices final AuthenticationManager manager,
        @SpringSecurityServices final RememberMeServices rememberMeServices,
        @Inject @Value("${spring-security.check.url}") final String authUrl,
        @Inject @Value("${spring-security.target.url}") final String targetUrl,
        @Inject @Value("${spring-security.failure.url}") final String failureUrl,
        @Inject @Value("${spring-security.always.use.target.url}") final String alwaysUseTargetUrl)
        throws Exception {

    UsernamePasswordAuthenticationFilter filter = new UsernamePasswordAuthenticationFilter();
    filter.setAuthenticationManager(manager);

    filter.setPostOnly(false);/*  www .j  av a  2s  .co  m*/

    filter.setAuthenticationFailureHandler(new SimpleUrlAuthenticationFailureHandler(failureUrl));

    SavedRequestAwareAuthenticationSuccessHandler successHandler = new SavedRequestAwareAuthenticationSuccessHandler();
    successHandler.setDefaultTargetUrl(targetUrl);
    successHandler.setAlwaysUseDefaultTargetUrl(Boolean.parseBoolean(alwaysUseTargetUrl));
    filter.setAuthenticationSuccessHandler(successHandler);
    filter.setFilterProcessesUrl(targetUrl);
    filter.setFilterProcessesUrl(authUrl);
    filter.setRememberMeServices(rememberMeServices);

    filter.afterPropertiesSet();
    return filter;
}

From source file:ch.astina.hesperid.web.services.SecurityModule.java

/**
 * Checks credentials entered using a form.
 *//*w  w w.  j  av  a 2  s .c  o  m*/
@Marker(SpringSecurityServices.class)
public static UsernamePasswordAuthenticationFilter buildRealAuthenticationProcessingFilter(
        @SpringSecurityServices final AuthenticationManager manager,
        @SpringSecurityServices final RememberMeServices rememberMeServices,
        @Inject @Value("${spring-security.check.url}") final String authUrl,
        @Inject @Value("${spring-security.target.url}") final String targetUrl,
        @Inject @Value("${spring-security.failure.url}") final String failureUrl,
        @Inject @Value("${spring-security.always.use.target.url}") final String alwaysUseTargetUrl)
        throws Exception {

    UsernamePasswordAuthenticationFilter filter = new UsernamePasswordAuthenticationFilter();
    filter.setAuthenticationManager(manager);

    filter.setPostOnly(false);

    filter.setAuthenticationFailureHandler(new SimpleUrlAuthenticationFailureHandler(failureUrl));

    SavedRequestAwareAuthenticationSuccessHandler successHandler = new SavedRequestAwareAuthenticationSuccessHandler();
    successHandler.setDefaultTargetUrl(targetUrl);
    successHandler.setAlwaysUseDefaultTargetUrl(Boolean.parseBoolean(alwaysUseTargetUrl));
    filter.setAuthenticationSuccessHandler(successHandler);
    filter.setFilterProcessesUrl(targetUrl);
    filter.setFilterProcessesUrl(authUrl);
    filter.setRememberMeServices(rememberMeServices);

    filter.afterPropertiesSet();
    return filter;
}

From source file:org.osiam.configuration.WebApplicationSecurity.java

@Override
protected void configure(HttpSecurity http) throws Exception {
    LoginDecisionFilter loginDecisionFilter = new LoginDecisionFilter();
    loginDecisionFilter.setAuthenticationManager(authenticationManagerBean());
    SavedRequestAwareAuthenticationSuccessHandler successHandler = new SavedRequestAwareAuthenticationSuccessHandler();
    successHandler.setAlwaysUseDefaultTargetUrl(false);
    loginDecisionFilter.setAuthenticationSuccessHandler(successHandler);
    loginDecisionFilter//from  w ww  .  ja  v  a  2  s  .  c  om
            .setAuthenticationFailureHandler(new OsiamCachingAuthenticationFailureHandler("/login/error"));

    // @formatter:off
    http.requestMatchers().antMatchers("/login/**", "/error", "/oauth/**").and().authorizeRequests()
            .antMatchers("/login", "/login/error", "/error").permitAll().anyRequest().authenticated().and()
            .csrf()
            // TODO: This is a bad idea! We need CSRF at least for the `/oauth/authorize` endpoint
            // see also: https://github.com/spring-projects/spring-security-oauth/blob/2.0.8.RELEASE/samples/oauth2/sparklr/src/main/java/org/springframework/security/oauth/examples/sparklr/config/SecurityConfiguration.java#L48
            .disable().exceptionHandling().accessDeniedPage("/login/error").and().sessionManagement()
            .sessionCreationPolicy(SessionCreationPolicy.ALWAYS).and().formLogin()
            .loginProcessingUrl("/login/check").failureUrl("/login/error").loginPage("/login").and()
            .addFilterBefore(loginDecisionFilter, UsernamePasswordAuthenticationFilter.class);
    // @formatter:on
}