Spring Security가 Session에 넣은 내용들

Java

Spring Security가 Session에 넣은 내용들

우혁이 아빠 2011. 5. 6. 11:22

1. 확인 방법

@RequestMapping("/account/home.do")
	public void accountHome(HttpServletRequest request) {
		HttpSession session = request.getSession();
		Enumeration attributeNames = session.getAttributeNames();
		while (attributeNames.hasMoreElements()) {
			
			String name = (String) attributeNames.nextElement();
			if (name.equals("SPRING_SECURITY_CONTEXT")) {
				SecurityContext value = 
					(SecurityContext) session.getAttribute(name);
				Authentication authentication = value.getAuthentication();
				User principal = (User) authentication.getPrincipal();
				WebAuthenticationDetails details = 
					(WebAuthenticationDetails) authentication.getDetails();
				String username = authentication.getName();
				String password = (String) authentication.getCredentials();

System.out.println();
				System.out.println("name = " + name + " , value = " + value.toString());
				System.out.println("authentication : " + authentication.toString());
				System.out.println("principal : " + principal);
				System.out.println("details : " + details.toString());
				System.out.println("username : " + username);
				System.out.println("password : " + password);
				System.out.println();
			}
		}
	}

2. 출력 내용들

name = SPRING_SECURITY_CONTEXT , value = org.springframework.security.core.context.SecurityContextImpl@b6b02800: Authentication: org.springframework.security.authentication.UsernamePasswordAuthenticationToken@b6b02800: Principal: org.springframework.security.core.userdetails.User@a4c850a4: Username: tazz001; Password: [PROTECTED]; Enabled: true; AccountNonExpired: true; credentialsNonExpired: true; AccountNonLocked: true; Granted Authorities: ROLE_USER; Credentials: [PROTECTED]; Authenticated: true; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@380f4: RemoteIpAddress: 0:0:0:0:0:0:0:1; SessionId: 6A00D615E835002CF2E182EF7C229666; Granted Authorities: ROLE_USER

authentication : org.springframework.security.authentication.UsernamePasswordAuthenticationToken@b6b02800: Principal: org.springframework.security.core.userdetails.User@a4c850a4: Username: tazz001; Password: [PROTECTED]; Enabled: true; AccountNonExpired: true; credentialsNonExpired: true; AccountNonLocked: true; Granted Authorities: ROLE_USER; Credentials: [PROTECTED]; Authenticated: true; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@380f4: RemoteIpAddress: 0:0:0:0:0:0:0:1; SessionId: 6A00D615E835002CF2E182EF7C229666; Granted Authorities: ROLE_USER

principal : org.springframework.security.core.userdetails.User@a4c850a4: Username: tazz001; Password: [PROTECTED]; Enabled: true; AccountNonExpired: true; credentialsNonExpired: true; AccountNonLocked: true; Granted Authorities: ROLE_USER

details : org.springframework.security.web.authentication.WebAuthenticationDetails@380f4: RemoteIpAddress: 0:0:0:0:0:0:0:1; SessionId: 6A00D615E835002CF2E182EF7C229666

username : tazz001

password : 111111

저작자표시