Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

SpringSecurity UserDetailsService get password

Tags:

java

spring-security

I'm creating authentication service in Spring.

I'm using UserDetailsService to get form variables, but i found that loadUserByUsername has only one variable - userName.

How to get password ?

public class userAuthentication implements UserDetailsService{

    private @Autowired
    ASPWebServicesUtils aspWebServicesUtils;

    @Override
    public UserDetails loadUserByUsername(String name) throws UsernameNotFoundException {

        //how to get password ?

        User user = new User("test", "test", true, true, true, true, getAuthorities(true));

        return user;  

    }

    private List<GrantedAuthority> getAuthorities(boolean isAdmin){

        List<GrantedAuthority> authorityList = new ArrayList<GrantedAuthority>(2);
        authorityList.add(new SimpleGrantedAuthority("USER_ROLE"));
        if(isAdmin){
            authorityList.add(new SimpleGrantedAuthority("ADMIN_ROLE"));
        }
        return authorityList;

    }
//...
}

Thanks

like image 721
Ilkar Avatar asked Feb 18 '13 14:02

Ilkar

People also ask

What is the use of UserDetailsService in Spring Security?

UserDetailsService is used by DaoAuthenticationProvider for retrieving a username, password, and other attributes for authenticating with a username and password. Spring Security provides in-memory and JDBC implementations of UserDetailsService .

How do I override UserDetailsService?

If you override UserDetailsSeervice and verify the username and password by override loadUserByUsername(), in your case it is static values(I would recommend for static users use inMemoryAuthentication). this will tell your authenticationManager to use userDetailsService which is been implemented for authentication.

1 Answers

If you look at the User object, the second parameter in the constructor is the password.

The UserDetailsService is used to load the user from a back-end structure like database. The loadUserByUsername method is called when a user tries to login with a username and password, then it is the responsibility of the service to load the user definition and return it to the security framework. The required details includes data like username, password, accountNonExpired, credentialsNonExpired, accountNonLocked and authorities.

Once the spring security receives the user object, it will validate the user against the password entered by the user and other data like user account status (accountNonExpired, credentialsNonExpired etc)

like image 151
Arun P Johny Avatar answered Sep 23 '22 01:09

Arun P Johny
Sign in to Comment

Related questions

Whats the best way to notify admin about new exceptions of the Java application?
How to create Jar file from Maven project in eclipse
Java 8 Stream API toMap converting to TreeMap
Firebase Service worker not found while using GWT (404 Error)
Spaced repetition algorithm from SuperMemo (SM-2)
Could not find builder.jar (com.android.tools.build:builder:3.1.0)
Java - encrypt / decrypt user name and password from a configuration file
What's the best way of learning iPhone programming when coming from Java?
What is the Collections.checkedList() call for in java?
IOException parsing XML document from class path resource
What does "String[] args" contain in java?
How to set the MediaRecorder to get the best video quality effect?
Accessing R.java from different packages
Include local .json file in Eclipse Android project
Spring conversion service - from List<A> to List<B>
How can I package a Java desktop application?
How do I add "Android Project" to the File>New>_____ Menu in Eclipse?
JavaFX 2.0 and Qt for cross-platform application
Struts2 How to Return a JSON Response [duplicate]
Using ConcurrentHashMap, when is synchronizing necessary?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!