堆栈内存溢出
  简体   繁体   English

通过REST服务API调用以编程方式通过Active Directory验证用户

[英]Authenticating users via Active Directory programmatically on REST service API call

 原文  2014-08-07 18:50:37       java/ spring-mvc/ spring-security/ active-directory

问题描述

I have a spring mvc web app that has an API, that looks like this 我有一个带有API的spring mvc网络应用,看起来像这样

/api/createUser?name=Tom . /api/createUser?name=Tom

At the same time there is a web site backed by the same web app, that has restricted pages, which can only be accessed once the a user authorizes using login form + Active Directory. 同时,存在一个由同一Web应用程序支持的网站,该网站具有受限制的页面,只有在用户使用登录表单+ Active Directory授权后,才能访问该网站。 I have managed to set up AD and it works well, but I am kinda lost with the API. 我已经成功设置了AD,并且效果很好,但是我对API有点迷。

I want to make an authentication for API calls too. 我也想对API调用进行身份验证。 Namely, I want to introduce username and password fields to every API call, so that when the relevant controller receives this API call, it first authenticates the user programmatically and it succeeded, then proceeds further with the request. 即,我想在每个API调用中引入usernamepassword字段,以便当相关控制器接收到此API调用时,它首先以编程方式对用户进行身份验证并成功,然后进一步处理请求。

So the question is, how can I authenticate a user programmatically outright from MVC controller in Spring? 所以问题是,如何在Spring中从MVC控制器中以编程方式直接验证用户? Is there any magic bean that I can inject and harness its power? 有什么魔豆可以注入并利用它的力量吗?

1 个解决方案

解决方案1
 0  2014-08-08 04:41:15

I think you could use spring sercurity 我认为您可以使用春季安全性 

<beans:beans xmlns="http://www.springframework.org/schema/security"
xmlns:beans="http://www.springframework.org/schema/beans" 
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
http://www.springframework.org/schema/security
http://www.springframework.org/schema/security/spring-security-3.2.xsd">

<http auto-config="true">
    <intercept-url pattern="/api**" access="ROLE_USER" />
</http>

<authentication-manager>
  <authentication-provider>
    <user-service>
    <user name="username" password="password" authorities="ROLE_USER" />
    </user-service>
  </authentication-provider>
</authentication-manager>

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 通过Kerberos使用Active Directory进行身份验证 - Authenticating with Active Directory via Kerberos 以编程方式验证用户 - Authenticating users programmatically 通过LdapExtLoginModule针对Active Directory林(LDAP_REFERRAL)进行身份验证 - Authenticating via LdapExtLoginModule against Active Directory Forest (LDAP_REFERRAL) 使用Shiro通过LDAP验证用户 - Authenticating users via LDAP with Shiro 验证每个API调用 - Authenticating on each API call 使用Java / Groovy中的Rest服务进行身份验证 - Authenticating with Rest Service in Java/Groovy 如何从Sharepoint 2013 Web服务和活动目录对用户进行身份验证 - How to authenticate users from sharepoint 2013 web service and active directory Spring MVC应用程序向Active Directory进行身份验证 - Spring MVC application authenticating to Active Directory 如何通过rest模板调用在另一个端口中运行的服务API? - How can I call a service API running in an another port via rest template? 在Linux上使用Java对Active Directory进行身份验证 - Authenticating against Active Directory with Java on Linux
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM