Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to find out the currently logged-in user in Spring Boot?

Tags:

java

spring-boot

In this Spring Boot application there is a web service, which returns some data for a logged-in user:

@RequestMapping("/resource") public Map<String, Object> home() {     Map<String, Object> model = new HashMap<String, Object>();     model.put("id", UUID.randomUUID().toString());     model.put("content", "Hello World");     return model; }

Imagine, the return value of the method depends on what user is currently logged in.

How can I find out, which user is logged in in that method?

like image 655
Dmitrii Pisarenko Avatar asked Jul 01 '15 10:07

Dmitrii Pisarenko

People also ask

What is SecurityContextHolder getContext () getAuthentication ()?

The HttpServletRequest.getUserPrincipal() will return the result of SecurityContextHolder.getContext().getAuthentication() . This means it is an Authentication which is typically an instance of UsernamePasswordAuthenticationToken when using username and password based authentication.

What is SecurityContextHolder in spring?

The SecurityContextHolder is a helper class, which provide access to the security context. By default, it uses a ThreadLocal object to store security context, which means that the security context is always available to methods in the same thread of execution, even if you don't pass the SecurityContext object around.

1 Answers

As per request:

Spring Boot which uses Spring Security internally provides a SecurityContextHolder class which allows the lookup of the currently authenticated user via:

Authentication auth = SecurityContextHolder.getContext().getAuthentication();

The authentication instance now provides the following methods:

  • Get the username of the logged in user: getPrincipal()
  • Get the password of the authenticated user: getCredentials()
  • Get the assigned roles of the authenticated user: getAuthorities()
  • Get further details of the authenticated user: getDetails()
like image 190
Roman Vottner Avatar answered Oct 01 '22 23:10

Roman Vottner
Sign in to Comment

Related questions

Fowler's "Patterns of Enterprise Application Architecture" still relevant? [closed]
Java generics: multiple generic parameters?
Generate getters and setters in NetBeans [closed]
In Spring MVC, how can I set the mime type header when using @ResponseBody
Java8 Lambdas and Exceptions
How do I schedule a task to run at periodic intervals?
substring index range
Why does replaceAll fail with "illegal group reference"?
What is the purpose of the Java Constant Pool?
A JNI error has occurred, please check your installation and try again in Eclipse x86 Windows 8.1
How to determine if a String has non-alphanumeric characters?
'android-24' requires JDK 1.8 or later to compile
How to add a timeout value when using Java's Runtime.exec()?
Get random boolean in Java
How to handle CORS using JAX-RS with Jersey
JAX-RS Post multiple objects
Java Wait for thread to finish
onActivityResult() not called in new nested fragment API
Calculate distance in meters when you know longitude and latitude in java [duplicate]
Breaking out of a for loop in Java [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!