Spring Security getPrincipal () Method Returns anonymousUser

Question

Spring Security getPrincipal () Method Returns anonymousUser

in my spring web application I want to get authenticated user in controller:

Object principal = SecurityContextHolder.getContext().getAuthentication().getPrincipal();

But the main meaning is "anonymousUser", although I logged in. How can I get an authenticated user? My configurations in spring -security.xml:

 <http auto-config="true" request-matcher="regex"> <intercept-url pattern="/welcome*" access="ROLE_USER" /> <form-login login-page="/login" default-target-url="/welcome" authentication-failure-url="/loginfailed" /> <logout logout-success-url="/logout" /> </http>

+6

java spring spring-mvc spring-security

Igorock Feb 02 '13 at 19:58

source share

1 answer

Marcel stör · Accepted Answer · 2013-02-02T21:57:51+0000

Not sure what I understand, but try this

 <http auto-config="true" request-matcher="regex"> <intercept-url pattern="/welcome*" access="ROLE_USER" /> <intercept-url pattern="/*" access="IS_AUTHENTICATED,IS_AUTHENTICATED_ANONYMOUSLY"/>

Spring Security getPrincipal () Method Returns anonymousUser

More articles: