Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Spring MVC: error pages and principal information

Tags:

spring-mvc

spring

spring-security

I want to implement custom error pages for web application. I use the following way:

web.xml

<error-page>
  <error-code>404</error-code>
  <location>/404/</location>
</error-page>

spring-security.xml

<http use-expressions="true">
    <form-login ... />
    <access-denied-handler error-page="/403/" />
    ....
</http>

Both pages are handled by appropriate controller. But it seems that the principal is unaccesable in this case i.e. I can't get any information about currently logged in user.

Is it default behaviour or I have an error in code?

Thank you

UPD #1: My config:

<listener>
    <listener-class>
            org.springframework.web.context.ContextLoaderListener
        </listener-class>
  </listener>
  <context-param>
    <param-name>contextConfigLocation</param-name>
    <param-value>
        /WEB-INF/spring-service.xml
        /WEB-INF/spring-security.xml
        /WEB-INF/spring-data.xml
        /WEB-INF/spring-mail.xml
    </param-value>
  </context-param>
  <filter>
    <filter-name>springSecurityFilterChain</filter-name>
    <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
  </filter>
  <filter-mapping>
    <filter-name>springSecurityFilterChain</filter-name>
    <url-pattern>/*</url-pattern>
  </filter-mapping>
  <filter>
    <filter-name>hibernateFilter</filter-name>
    <filter-class>org.springframework.orm.hibernate3.support.OpenSessionInViewFilter</filter-class>
    <init-param>
      <param-name>sessionFactoryBeanName</param-name>
      <param-value>sessionFactory</param-value>
    </init-param>
  </filter>
  <filter-mapping>
    <filter-name>hibernateFilter</filter-name>
    <url-pattern>/*</url-pattern>
  </filter-mapping>
  <servlet>
    <servlet-name>spring</servlet-name>
    <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
    <load-on-startup>0</load-on-startup>
  </servlet>
  <servlet-mapping>
    <servlet-name>spring</servlet-name>
    <url-pattern>/</url-pattern>
  </servlet-mapping>
like image 835
nKognito Avatar asked Jul 08 '13 08:07

nKognito

1 Answers

To access principal data from error pages, you need to map your spring security filter as:

<filter-mapping>
    <filter-name>springSecurityFilterChain</filter-name>
    <url-pattern>/*</url-pattern>
    <dispatcher>FORWARD</dispatcher>
    <dispatcher>REQUEST</dispatcher>
    <dispatcher>ERROR</dispatcher>
</filter-mapping>
like image 79
Abel Pastur Avatar answered Sep 28 '22 10:09

Abel Pastur
Sign in to Comment

Related questions

How do I find unneeded JARS in my Java Projects
Jackson deserialize "" as an empty list
Spring request scope in an async service? Implement ThreadScope over threadLocal variable, plus an AsyncAspect to clean up
Spring - Build path is incomplete. Cannot find class file for org/springframework/beans/factory/Aware in dispatcher-servlet.xml
How to register a custom type in Hibernate using org.springframework.orm.hibernate4.LocalSessionFactoryBean
How to make "order by aggregate function" in Spring Data?
how to avoid getting javassist lazy Entity proxy instances in Hibernate
Get all logged users in Spring Security
ignored Security annotations in spring mvc
Adding HTTPS support causes loop redirection
JPA tests hang while obtaining HSQL connection from Maven Command Line
Spring @Async or EJB @Asynchronous for asynchronous service invocation ?
Displaying spring form error outside of form
Sending list in JSON request
Can a GIT branch have a subset of data?
Add custom beans to Spring context
Equivalency of Guice Provider in Spring
Inject Session object to DAO bean instead of Session Factory?
Unsure how to return generated column id value using Spring jdbcTemplate and PreparedStatementSetter
@PreAuthorize(permitAll) still requires authentication

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!