How to manually set an authenticated user in Spring Security / SpringMVC

by

I couldn’t find any other full solutions so I thought I would post mine. This may be a bit of a hack, but it resolved the issue to the above problem:

public void login(HttpServletRequest request, String userName, String password)
{

    UsernamePasswordAuthenticationToken authRequest = new UsernamePasswordAuthenticationToken(userName, password);

    // Authenticate the user
    Authentication authentication = authenticationManager.authenticate(authRequest);
    SecurityContext securityContext = SecurityContextHolder.getContext();
    securityContext.setAuthentication(authentication);

    // Create a new session and add the security context.
    HttpSession session = request.getSession(true);
    session.setAttribute("SPRING_SECURITY_CONTEXT", securityContext);
}

More Related Contents:

  1. Spring Security : Multiple HTTP Config not working
  2. Filter invoke twice when register as Spring bean
  3. How to get active user’s UserDetails
  4. When using Spring Security, what is the proper way to obtain current username (i.e. SecurityContext) information in a bean?
  5. Configuring Spring Security 3.x to have multiple entry points
  6. How to disable spring security for particular url
  7. Difference between Role and GrantedAuthority in Spring Security
  8. Disable Spring Security for OPTIONS Http Method
  9. Can Spring Security use @PreAuthorize on Spring controllers methods?
  10. How to enable HTTP response caching in Spring Boot
  11. RESTful Authentication via Spring
  12. Multiple WebSecurityConfigurerAdapters: JWT authentication and form login in spring security
  13. HttpSecurity, WebSecurity and AuthenticationManagerBuilder
  14. How to get the current logged in user object from spring security?
  15. Spring webSecurity.ignoring() doesn’t ignore custom filter
  16. Customize authentication failure response in Spring Security using AuthenticationFailureHandler
  17. Spring security does not allow CSS or JS resources to be loaded
  18. how to display custom error message in jsp for spring security auth exception
  19. spring web, security + web.xml + mvc dispatcher + Bean is created twice
  20. How to apply Spring Security filter only on secured endpoints?
  21. Spring Security HTTP Basic for RESTFul and FormLogin (Cookies) for web – Annotations
  22. Spring security added prefix “ROLE_” to all roles name?
  23. Why this Spring application with java-based configuration don’t work properly
  24. Spring REST security – Secure different URLs differently
  25. Custom Authentication Manager with Spring Security and Java Configuration
  26. How to reload authorities on user update with Spring Security
  27. How to exclude one url from authorization
  28. How is Spring actually bootstrap?
  29. Spring security @PreAuthorize hasRole() properties injection
  30. How to secure REST API with Spring Boot and Spring Security?

Leave a Comment