Auto login after successful registration

by

This can be done with spring security in the following manner(semi-psuedocode):

import org.springframework.security.web.savedrequest.RequestCache;
import org.springframework.security.web.savedrequest.SavedRequest;

@Controller
public class SignupController
{

    @Autowired
    RequestCache requestCache;

    @Autowired
    protected AuthenticationManager authenticationManager;

    @RequestMapping(value = "/account/signup/", method = RequestMethod.POST)
    public String createNewUser(@ModelAttribute("user") User user, BindingResult result,  HttpServletRequest request, HttpServletResponse response) {
        //After successfully Creating user
        authenticateUserAndSetSession(user, request);

        return "redirect:/home/";
    }

    private void authenticateUserAndSetSession(User user, HttpServletRequest request) {
        String username = user.getUsername();
        String password = user.getPassword();
        UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken(username, password);

        // generate session if one doesn't exist
        request.getSession();

        token.setDetails(new WebAuthenticationDetails(request));
        Authentication authenticatedUser = authenticationManager.authenticate(token);

        SecurityContextHolder.getContext().setAuthentication(authenticatedUser);
    }
}

Update: to only contain how to create the session after the registration

More Related Contents:

  1. How Spring Security Filter Chain works
  2. How to use OAuth2RestTemplate?
  3. How do I get the Session Object in Spring?
  4. Spring Boot CORS filter – CORS preflight channel did not succeed
  5. Spring Security exclude url patterns in security annotation configurartion
  6. Spring Security 3.2 CSRF support for multipart requests
  7. How to write a custom filter in spring security?
  8. Spring CSRF token does not work, when the request to be sent is a multipart request
  9. can I include user information while issuing an access token?
  10. How can I use Spring Security without sessions?
  11. How to manually log out a user with spring security?
  12. Spring + Web MVC: dispatcher-servlet.xml vs. applicationContext.xml (plus shared security)
  13. getting exception: No bean named ‘springSecurityFilterChain’ is defined
  14. Spring Security and @Async (Authenticated Users mixed up)
  15. antMatchers that matches any beginning of path
  16. Spring Security: mapping OAuth2 claims with roles to secure Resource Server endpoints
  17. How to use multiple login pages one for admin and the other one for user
  18. Multiple antMatchers in Spring security
  19. An Authentication object was not found in the SecurityContext – Spring 3.2.2
  20. Spring Security 3.2 CSRF disable for specific URLs
  21. Spring Boot with embedded Tomcat behind Apache proxy
  22. Spring Social Authentication Filter for Stateless REST Endpoints which use Facebook Token for authentication
  23. Spring Boot: How to specify the PasswordEncoder?
  24. With Spring Security 3.2.0.RELEASE, how can I get the CSRF token in a page that is purely HTML with no tag libs
  25. How to allow a User only access their own data in Spring Boot / Spring Security?
  26. Looking for a Simple Spring security example [closed]
  27. Spring security 4 custom login j_spring_security_check return http 302
  28. Is it possible to invalidate a spring security session?
  29. How to apply Spring Data projections in a Spring MVC controllers?
  30. Custom Authentication provider with Spring Security and Java Config

Leave a Comment