Spring security - same page to deliver different content based on user role
Posted
by Ramesh
on Stack Overflow
See other posts from Stack Overflow
or by Ramesh
Published on 2010-05-24T09:06:30Z
Indexed on
2010/05/24
9:11 UTC
Read the original article
Hit count: 258
spring
|spring-security
Hello, i tried to search for any previous post related to my issue but couldnt find any. I have a scenario where in page handles 3 different scenarios and one of them not working. This page returns different content depending on if the user is authenticated or anonymous.
localhost:8080/myApp/muUrl?test=authenticatedContent - > used for Scenario 1 & 2 localhost:8080/myApp/muUrl?test=anonymousContent -> used for Scenario 3 Scenario:
1) Authenticated user accesing the page url - the user gets displayed correct information. Works fine
2) Anonymous user accesing page URL with parameters that requires authentication - If anonymous, there is second level of check on the content they are accessing. for example, based on the GET parameters, there is custom logic to determine if the user has to be authenticated. In which case the page gets redirected to login page (WORKS fine).
3) Anonymous user accessing page URL with parameters that doesnt need authentication - in this case i get the SAvedRequest and redirect to the URL which is taking me to an infinite loop.
Am i missing something very obvious or is there a way in AuthenticationProcessFilterEntryPoint to say "DON'T redirect to LOGIN page but process it" ?
thanks.
© Stack Overflow or respective owner