Grails spring security 3 field authentication
Question
I need to authenticate the users of my application using spring security but I need to have a 3 field authentication which will have a username , password and companycode . Since the app is handling too many companies so it needs to have the company code.
I have been trying to address this issue and have came across this link which is written by @BurtBeckwith - http://burtbeckwith.com/blog/?p=1090
Now questions and doubts arises because this blog was written in 2011 and was used at the time of Grails 1.4. So have anyone came across any such issue in the recent past? Still we need to change this much to implement the 3 field login?
Are there any shortcuts to implement this?
1 answers
solution1
6 ACCPTED 2015-02-10 11:00:09
Even though much has changed in the world of Grails since Burt wrote that blog entry, Spring security itself has not changed fundamentally.
The approach he outlines is still arguably the best approach to adding additional authentication credentials (eg organization) without limiting your ability to further enhance security to leverage this additional paradigm.
So in short, no there are no shortcuts to implement this. As Burt has said many times, doing security right is hard. However, if you do it right, you don't have to worry about it after it is done.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.