抓取使用弹簧安全

Question

当前的loggedIn用户我在获得登录的用户在我的弹簧ExtJS的application.I正在使用弹簧安全2.0.4.Here一个问题是什么，我都试过的细节。

控制器类：

@RequestMapping(value="/StaffingApplication/index.action", method = RequestMethod.GET) 
public String printUser(ModelMap model) { 
    Authentication auth = SecurityContextHolder.getContext().getAuthentication(); 
    String name = auth.getName(); //get logged in username  
    System.out.println(name); 
    model.addAttribute("username", name); 
    return "index.jsp"; 
} 

login.js文件

var login = new Ext.FormPanel({ 
    labelWidth:80, 
    url:'j_spring_security_check', 
    frame:true, 
    title:'Please Login', 
    defaultType:'textfield', 
    width:300, 
    height:130, 
    monitorValid:true, 
    // Specific attributes for the text fields for username/password. 
    // The "name" attribute defines the name of variables sent to the server. 

    items:[{ 
     fieldLabel:'Username', 
     name:'j_username', 
     allowBlank:false 
    },{ 
     fieldLabel:'Password', 
     name:'j_password', 
     inputType:'password', 
     allowBlank:false 
    }], 

    // All the magic happens after the user clicks the button 
    buttons:[{ 
     text:'Login', 
     formBind: true, 
     // Function that fires when user clicks the button 
     handler:function(){ 
     login.getForm().submit({ 

      method:'POST', 

      // Functions that fire (success or failure) when the server responds. 
      // The server would actually respond with valid JSON, 
      // something like: response.write "{ success: true}" or 

      // response.write "{ success: false, errors: { reason: 'Login failed. Try again.' }}" 
      // depending on the logic contained within your server script. 
      // If a success occurs, the user is notified with an alert messagebox, 

      // and when they click "OK", they are redirected to whatever page 
      // you define as redirect. 

      success:function(){ 
      Ext.Msg.alert('Status', 'Login Successful!', function(btn, text){ 
       if (btn == 'ok'){ 
         window.location = 'index.action'; 
       } 
      }); 

     }, 

     // Failure function, see comment above re: success and failure. 
     // You can see here, if login fails, it throws a messagebox 
     // at the user telling him/her as much. 


     failure:function(form, action){ 
      if(action.failureType == 'server'){ 
       obj = Ext.util.JSON.decode(action.response.responseText); 

       Ext.Msg.alert('Login Failed!', obj.errors.reason); 
      }else{ 
       Ext.Msg.alert('Warning!', 'Authentication server is unreachable : ' + action.response.responseText); 
       //window.location='loginFailure.html'+action.response.responseText; 
      } 
      login.getForm().reset(); 
     } 

     }); 
    } 
    }] 
}); 

在我的jsp页面访问它这样。

<div id="header" class="header">Options Staffing Application 
    <div style="" id="user-status"> 
     <a href='<c:url value="j_spring_security_logout"/>'>Logout</a> 
     <h3>Username : ${username}</h3> 
    </div> 
</div> 

但我只是得到了一个空白代替用户名。 当我尝试在控制器中打印它时，我得到打印的值，但似乎不会显示在jsp页面上。通过其他线程，但没有帮助。任何帮助，将不胜感激

感谢您的时间 萨钦

Answer 1

你并不需要把用户名到一个对象模型，因为你可以从一个jsp就像你在控制器类的方式做访问：

<h3>Username <%=SecurityContextHolder.getContext().getAuthentication().getName(); =></h3> 

甚至更​​好：

<h3>Username <sec:authentication property="name" /></h3> 

但是我不确定你是否可以在Spring Security 2中使用那个taglib