Comments on: Acegi Security for Dummies

By: Sanjoy De

Sanjoy De — Wed, 17 Sep 2008 12:22:31 +0000

Hi Erik,
I am a Java developer and the framework is Spring. This Examples helps me a lot.
It will be very helpfull for me if you provide an another complete example which includes the complete acigi security.
I actually don’t understand the flow of login. Please give me an examples.

Thanks

Sanjoy De

By: Sachin Mali

Sachin Mali — Wed, 12 Mar 2008 19:06:17 +0000

I would like to thanks AMIS for publishing this article. It has been explained very nicely. Because of this only I was able to implement my Authentication thro JDBC for my Custom Tables as I can not use standard Acegi tables. Without this I would not have done my application’s authentication and authorization.
Thanks and Regards
Sachin Mali

By: Thomas

Thomas — Mon, 03 Dec 2007 22:34:57 +0000

This blog only describes form authentication and not basic authentication like stated.

By: Anand Mohan Sravanam

Anand Mohan Sravanam — Mon, 02 Jul 2007 08:43:45 +0000

Hi Eric Could you plz help in integrating Jcaptcha in Spring, Hibernate, Acegi environament. The User Name and passwords are stored in the database(MySql). As I am new to these concepts, I am in desperate need. I would be obliged if you help me ata an earliest.

By: filip

filip — Fri, 16 Jun 2006 15:12:17 +0000

I am using acegi 1.0.0 rc2 and seems that there is a problem, i cannot find method [ setUsersByUsernameMapping(); ]
Can anyone help me with this. I was trying to override UsersByUsername Mapping() but i couldnt manage.
Thanks

By: Bunard

Bunard — Thu, 25 May 2006 00:55:22 +0000

Erik,

Thank you for your reply.

I finally figured out by customizing the CustomUser into the authentication. Since the authentication is in the SecureContext, I can either access the CustomUser at my login jsp and put it to the session or I can access it at my regular servlet.

Here is how I access it:

String customUserName =((CustomUser)
((SecureContext)net.sf.acegisecurity.context.ContextHolder.getContext()).getAuthentication().getPrincipal()).getUsername()

Thanks,

Bunard

By: Erik Kerkhoven

Erik Kerkhoven — Tue, 23 May 2006 01:01:54 +0000

Sounds like a valid business case and a good idea to switch to Spring gradually. See: http://www.acegisecurity.org/standalone.html.
See the answer of Ben Alex at http://forum.springframework.org/archive/index.php/t-9911.html
If your other application is Struts, you could use a plug-in, see: http://www.jroller.com/page/fairTrade?entry=integrating_acegi_and_struts. Here’s another example of Acegi – Struts integration with plug-in: http://www.jroller.com/page/chololo?entry=integrating_jcaptcha_with_acegi_security.

By: Bunard

Bunard — Fri, 19 May 2006 17:45:23 +0000

Erik,

Now, that it works. The next step is I want to pass username, password, user roles, dept id… to HttpSession from AuthenticationJdbcDaoImpl so that my non-spring framework application can acces them.

Do you know how to do that? The Acegi and Spring framework are new to me. We decide to switch to them because we think they are good and secure frameworks.

I appreciate for your help.

Thanks,

Bunard

**************
My plan is to intergrate a new spring framework appliaction to the current non-framework application and use Acegi Security login for both of applications. Eventually, we will migrate the non-spring framework application to spring framework.

By: Erik Kerkhoven

Erik Kerkhoven — Wed, 17 May 2006 23:15:54 +0000

Sorry, I didn’t understand you Maven issue. Thank you very much for your reply; very kind.

By: Bunard

Bunard — Wed, 17 May 2006 23:02:29 +0000

Since maven has some problem. I manually build the sample and it works.
Thank you to Mr. Erik Kerkhoven for providing this sample.