Announcement Announcement Module
Collapse
No announcement yet.
Spring_security_last_exception Page Title Module
Move Remove Collapse
This topic is closed
X
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • Spring_security_last_exception

    How is SPRING_SECURITY_LAST_EXCEPTION and SPRING_SECURITY_LAST_USERNAME populated in the jsp. I am new to spring security and couldn't find good documentation.

    Additional, how is param.login_error populated in the jsp file.

    I appreciate your help and documentation on this would really help.

    Regards,
    Jagadish

  • #2
    Originally posted by jaga_vvv View Post
    How is SPRING_SECURITY_LAST_EXCEPTION and SPRING_SECURITY_LAST_USERNAME populated in the jsp. I am new to spring security and couldn't find good documentation.
    Try google

    http://www.google.com/search?hl=en&q...rg&btnG=Search

    and you'll find the class where it happens.

    Or the Javadoc, which contains all constant values:

    http://static.springframework.org/sp...nt-values.html


    Additional, how is param.login_error populated in the jsp file.
    The default failure URL is usually set to add a parameter to allow the login page to differentiate between being displayed as the result of a login error and a normal login prompt. You don't have to do this and you don't have to make use of it. You could use any name you want, e.g.

    Code:
    <form-login login-page="/login.jsp" authentication-failure-url="/login.jsp?aaaaak=true" />
    If you don't configure a login page, then one will be generated for you automatically for convenience, in order to get things running with the minimal configuration required. There is an internal class called DefaultLoginPageGeneratingFilter which does this. The namespace configuration will then automatically add the parameter "login_error", as this is what the DefaultLoginPageGeneratingFilter expects.

    Comment

    Working...
    X