• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Authenticating in Spring Security with password and username in url

 
Bartek Duda
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I have application that use Sprin Security and runs on Tomcat. I need to allow user to authenticate only using link with password and username as parameters. I'm searching for any advice how to do that, possible solutions, etc.
Thanks for any help.
 
Vyas Sanzgiri
Ranch Hand
Posts: 686
Chrome Netbeans IDE Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I am no expert but I think you need to have a custom authentication processing filter and then generate unique url based on some combination of username and password.
 
Bartek Duda
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thank you for replay,
I read some documentation and at that moment one possible solution to me is to write custom filter, something like that:


And register it:


But there are still many question to me:
1. How to "tell" that given user and password are correct and ther is no need to redirect to login page? How set Authentication obect?
2. Where put my filter? before="FIRST" or after="PRE_AUTH_FILTER" or somwhere else?
3. Is "extends OncePerRequestFilter" the best choice?

Any advice welcome :-)
 
Bartek Duda
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I founded solution,
I added filter


And in configuration:



It works exactly as I wanted.
Regards
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic