STEP 1:- To perform database authentication, you have to create tables to store the
users and roles detail.
Here are the MySQL scripts to create users and user_roles tables.
STEP 3:- Make sure you use Target Runtime as Apache Tomcat 7.0 and Dynamic web module version as 3.0..
STEP 4:- copy below jars to WEB-INF/lib folder.
enter below URL in your browser
http://localhost:8080/SpringSecurityHrbridLdapJavaConfig/
Keep visiting TutorialsDesk for more tutorials and practical programming examples on Spring MVC.
Hope we are able to explain you Spring MVC Security LDAP Authentication Hibernate Authorization Java Config Example, if you have any questions or suggestions please write to us using contact us form.
Please share us on social media if you like the tutorial.
Here are the MySQL scripts to create users and user_roles tables.
- Table: users
CREATE TABLE users ( username VARCHAR(60) NOT NULL , password VARCHAR(60) NOT NULL , enabled TINYINT NOT NULL DEFAULT 1 , PRIMARY KEY (username));
- Table: user_roles
CREATE TABLE user_roles ( user_role_id int(11) NOT NULL AUTO_INCREMENT, username varchar(60) NOT NULL, role varchar(60) NOT NULL, PRIMARY KEY (user_role_id), UNIQUE KEY uni_username_role (role,username), KEY fk_username_idx (username), CONSTRAINT fk_username FOREIGN KEY (username) REFERENCES users (username));
- here is insert script
insert into users values('user','123456',1)
insert into users values('apiuser','123456',1)
insert into users values('admin','123456',1)
insert into user_roles values('user','ROLE_USER')
insert into user_roles values('admin','ROLE_USER')
insert into user_roles values('admin','ROLE_ADMIN')
insert into user_roles values('admin','ROLE_API')
insert into user_roles values('apiuser','ROLE_USER')
insert into user_roles values('apiuser','ROLE_API')
STEP 2:- Open Eclipse and Create Dynamic Web Project named
SpringSecurityHrbridLdapJavaConfigSTEP 3:- Make sure you use Target Runtime as Apache Tomcat 7.0 and Dynamic web module version as 3.0..
STEP 4:- copy below jars to WEB-INF/lib folder.
- antlr-2.7.6.jar
- aopalliance-1.0.jar
- apacheds-all-1.5.5.jar
- apacheds-server-jndi-1.5.5.jar
- commons-logging-1.2.jar
- dom4j-1.6.1.jar
- hibernate-commons-annotations-4.0.4.Final.jar
- hibernate-core-4.3.6.Final.jar
- hibernate-jpa-2.1-api-1.0.0.Final.jar
- hibernate-validator-4.3.2.Final.jar
- javassist-3.12.1.GA.jar
- jboss-logging-3.1.0.CR1.jar
- jta.jar
- jtds.jar
- log4j-1.2.17.jar
- persistence-api-1.0.2.jar
- slf4j-api-1.5.6.jar
- slf4j-simple-1.5.6.jar
- spring-aop-4.1.4.RELEASE.jar
- spring-aspects-4.1.4.RELEASE.jar
- spring-beans-4.1.4.RELEASE.jar
- spring-context-4.1.4.RELEASE.jar
- spring-core-4.1.4.RELEASE.jar
- spring-expression-4.1.4.RELEASE.jar
- spring-jdbc-4.1.4.RELEASE.jar
- spring-ldap-core-2.0.3.RELEASE.jar
- spring-ldap-core-tiger-2.0.1.RELEASE.jar
- spring-orm-4.1.4.RELEASE.jar
- spring-security-config-4.0.2.RELEASE.jar
- spring-security-core-4.0.2.RELEASE.jar
- spring-security-ldap-4.0.2.RELEASE.jar
- spring-security-taglibs-4.0.2.RELEASE.jar
- spring-security-web-4.0.2.RELEASE.jar
- spring-tx-4.1.4.RELEASE.jar
- spring-web-4.1.4.RELEASE.jar
- spring-webmvc-4.1.4.RELEASE.jar
- Package: com.tutorialsdesk.config
- Filename: DataSourceConfig.java
package com.tutorialsdesk.config;
import java.util.Properties;
import javax.annotation.Resource;
import javax.sql.DataSource;
import org.hibernate.SessionFactory;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.core.env.Environment;
import org.springframework.jdbc.datasource.DriverManagerDataSource;
import org.springframework.orm.hibernate4.HibernateTransactionManager;
import org.springframework.orm.hibernate4.LocalSessionFactoryBuilder;
import org.springframework.transaction.annotation.EnableTransactionManagement;
@Configuration
@EnableTransactionManagement
public class DataSourceConfig {
private static final String PROPERTY_NAME_DATABASE_DRIVER = "db.driver";
private static final String PROPERTY_NAME_DATABASE_PASSWORD = "db.password";
private static final String PROPERTY_NAME_DATABASE_URL = "db.jdbcurl";
private static final String PROPERTY_NAME_DATABASE_USERNAME = "db.username";
@Resource
private Environment env;
@Bean
public DataSource dataSource() {
DriverManagerDataSource dataSource = new DriverManagerDataSource();
dataSource.setDriverClassName(env.getRequiredProperty(PROPERTY_NAME_DATABASE_DRIVER));
dataSource.setUrl(env.getRequiredProperty(PROPERTY_NAME_DATABASE_URL));
dataSource.setUsername(env.getRequiredProperty(PROPERTY_NAME_DATABASE_USERNAME));
dataSource.setPassword(env.getRequiredProperty(PROPERTY_NAME_DATABASE_PASSWORD));
return dataSource;
}
@Bean
public SessionFactory sessionFactory() {
LocalSessionFactoryBuilder builder = new LocalSessionFactoryBuilder(dataSource());
builder.scanPackages("com.tutorialsdesk.model").addProperties(getHibernateProperties());
return builder.buildSessionFactory();
}
private Properties getHibernateProperties() {
Properties prop = new Properties();
prop.put("hibernate.format_sql", "true");
prop.put("hibernate.show_sql", "true");
prop.put("hibernate.connection.pool_size", "5");
prop.put("hibernate.hbm2ddl.auto", "update");
prop.put("hibernate.dialect",
"org.hibernate.dialect.SQLServerDialect");
return prop;
}
@Bean
public HibernateTransactionManager transactionManager() {
return new HibernateTransactionManager(sessionFactory());
}
}
STEP 6:- Create db.properties file under WEB-INF/db.properties.
db.driver=com.mysql.jdbc.Driver db.jdbcurl=jdbc:mysql://localhost:3306/test db.username=root db.password=passwordSTEP 7:- Create Spring Security configuration fileas below.
- Package: com.tutorialsdesk.config
- Filename: SecurityConfig.java
package com.tutorialsdesk.config;
import javax.sql.DataSource;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Qualifier;
import org.springframework.context.annotation.Configuration;
import
org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import
org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import
org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.ldap.userdetails.LdapAuthoritiesPopulator;
@Configuration
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {
@Autowired
private DataSource dataSource;
@Autowired
@Qualifier("ldaploginService")
LdapAuthoritiesPopulator ldapAuthoritiesPopulator;
@Autowired
public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
auth.ldapAuthentication()
.contextSource()
.ldif("/WEB-INF/conf/users.ldif").root("o=tutorialsdesk")
//.url("ldap://LDAPURL:PORT/dc=corp,dc=tutorialsdesk,dc=com")
//.managerDn("CN=Prakash,OU=Service Accounts,OU=Privilege User
Account,DC=corp,DC=tutorialsdesk,DC=com")
//.managerPassword("Password")
.and()
.userSearchFilter("(uid={0})")
.userSearchBase("ou=users")
// .userSearchBase("dc=corp,dc=tutorialsdesk,dc=com")
// .userSearchFilter("(&(objectClass=user)(sAMAccountName={0}))");
.ldapAuthoritiesPopulator(ldapAuthoritiesPopulator);
}
@Override
protected void configure(HttpSecurity http) throws Exception {
http
.authorizeRequests()
.antMatchers("/").permitAll()
.antMatchers("/home").access("hasRole('ROLE_USER')")
.antMatchers("/admin/**").access("hasRole('ROLE_ADMIN')")
.antMatchers("/api/**").access("hasRole('ROLE_ADMIN') or
hasRole('ROLE_API')")
.and()
.formLogin()
.loginProcessingUrl("/login")
.loginPage("/login")
.failureUrl("/login?error")
.defaultSuccessUrl("/home")
.usernameParameter("username")
.passwordParameter("password")
.and()
.exceptionHandling()
.accessDeniedPage("/Access_Denied");
}
}
STEP 8:- Create a class extends AbstractSecurityWebApplicationInitializer, it will
load the springSecurityFilterChain automatically.
- Package: com.tutorialsdesk.config.core
- Filename: SpringSecurityInitializer.java
package com.tutorialsdesk.config.core;
import
org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer;
public class SpringSecurityInitializer extends
AbstractSecurityWebApplicationInitializer {
}
STEP 9:- Create Spring MVC configuration file.
A Config class, define the view’s technology and imports above DataSourceConfig and
SecurityConfig.
- Package: com.tutorialsdesk.config
- Filename: WebMvcConfig.java
package com.tutorialsdesk.config;
import javax.annotation.Resource;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.ComponentScan;
import org.springframework.context.annotation.Configuration;
import org.springframework.context.annotation.Import;
import org.springframework.context.annotation.PropertySource;
import org.springframework.core.env.Environment;
import org.springframework.web.servlet.config.annotation.EnableWebMvc;
import org.springframework.web.servlet.view.InternalResourceViewResolver;
import org.springframework.web.servlet.view.JstlView;
@EnableWebMvc
@Configuration
@ComponentScan({
"com.tutorialsdesk.controller","com.tutorialsdesk.service","com.tutorialsdesk.dao.impl","com.tutorialsdesk.service.impl"
})
@Import({ SecurityConfig.class, DataSourceConfig.class })
@PropertySource("/WEB-INF/db.properties")
public class WebMvcConfig {
@Resource
private Environment env;
@Bean
public InternalResourceViewResolver viewResolver() {
InternalResourceViewResolver viewResolver = new InternalResourceViewResolver();
viewResolver.setViewClass(JstlView.class);
viewResolver.setPrefix("/WEB-INF/views/");
viewResolver.setSuffix(".jsp");
return viewResolver;
}
}
STEP 10:- Create a Sevlet Initializer class, to load everything.
- Package: com.tutorialsdesk.config.core
- Filename: SpringMvcInitializer.java
package com.tutorialsdesk.config.core;
import
org.springframework.web.servlet.support.AbstractAnnotationConfigDispatcherServletInitializer;
import com.tutorialsdesk.config.AppConfig;
public class SpringMvcInitializer extends
AbstractAnnotationConfigDispatcherServletInitializer {
@Override
protected Class<?>[] getRootConfigClasses() {
return new Class[] { WebMvcConfig.class };
}
@Override
protected Class<?>[] getServletConfigClasses() {
return null;
}
@Override
protected String[] getServletMappings() {
return new String[] { "/" };
}
}
STEP 11 :- Create Controller Class.
- Package: com.tutorialsdesk.controller
- Filename: IndexController.java
package com.tutorialsdesk.controller;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.core.userdetails.UserDetails;
import
org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler;
import org.springframework.stereotype.Controller;
import org.springframework.ui.ModelMap;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestMethod;
import org.springframework.web.bind.annotation.RequestParam;
import org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator;
@Controller
@RequestMapping("/")
public class IndexController {
@RequestMapping(value = { "/", "/login" }, method =
RequestMethod.GET)
public String loginPage(ModelMap model, @RequestParam(value = "error",
required = false) String error) {
if (error != null) {
model.addAttribute("error", "Invalid username and password!");
}
return "login";
}
@RequestMapping(value = { "/home" }, method = RequestMethod.GET)
public String homePage(ModelMap model) {
model.addAttribute("greeting", "Hi, Welcome to mysite. ");
return "welcome";
}
@RequestMapping(value = "/admin", method = RequestMethod.GET)
public String adminPage(ModelMap model) {
model.addAttribute("user", getPrincipal());
return "admin";
}
@RequestMapping(value = "/api", method = RequestMethod.GET)
public String dbaPage(ModelMap model) {
model.addAttribute("user", getPrincipal());
return "api";
}
@RequestMapping(value="/logout", method = RequestMethod.GET)
public String logoutPage (ModelMap model,HttpServletRequest request,
HttpServletResponse response) {
Authentication auth = SecurityContextHolder.getContext().getAuthentication();
if (auth != null){
new SecurityContextLogoutHandler().logout(request, response, auth);
}
model.addAttribute("msg", "You've been logged out
successfully.");
return "login";
}
@RequestMapping(value = "/Access_Denied", method = RequestMethod.GET)
public String accessDeniedPage(ModelMap model) {
model.addAttribute("user", getPrincipal());
return "accessDenied";
}
private String getPrincipal(){
String userName = null;
Object principal =
SecurityContextHolder.getContext().getAuthentication().getPrincipal();
System.out.println("HelloWorldController.getPrincipal()" +
SecurityContextHolder.getContext().getAuthentication().getAuthorities().size());
System.out.println("HelloWorldController.getPrincipal()" +
SecurityContextHolder.getContext().getAuthentication().getAuthorities().toString());
if (principal instanceof UserDetails) {
userName = ((UserDetails)principal).getUsername();
} else {
userName = principal.toString();
}
return userName;
}
}
STEP 12 :- Create Model Class.
- Package: com.tutorialsdesk.model
- Filename: User.java
package com.tutorialsdesk.model;
import java.util.HashSet;
import java.util.Set;
import javax.persistence.Column;
import javax.persistence.Entity;
import javax.persistence.FetchType;
import javax.persistence.Id;
import javax.persistence.OneToMany;
import javax.persistence.Table;
@Entity
@Table(name = "users")
public class User {
private String username;
private String password;
private boolean enabled;
private Set<UserRole> userRole = new HashSet<UserRole>(0);
public User() {
}
public User(String username, String password, boolean enabled) {
this.username = username;
this.password = password;
this.enabled = enabled;
}
public User(String username, String password,
boolean enabled, Set<UserRole> userRole) {
this.username = username;
this.password = password;
this.enabled = enabled;
this.userRole = userRole;
}
@Id
@Column(name = "username", unique = true,
nullable = false, length = 45)
public String getUsername() {
return this.username;
}
public void setUsername(String username) {
this.username = username;
}
@Column(name = "password",
nullable = false, length = 60)
public String getPassword() {
return this.password;
}
public void setPassword(String password) {
this.password = password;
}
@Column(name = "enabled", nullable = false)
public boolean isEnabled() {
return this.enabled;
}
public void setEnabled(boolean enabled) {
this.enabled = enabled;
}
@OneToMany(fetch = FetchType.LAZY, mappedBy = "user")
public Set<UserRole> getUserRole() {
return this.userRole;
}
public void setUserRole(Set<UserRole> userRole) {
this.userRole = userRole;
}
}
- Package: com.tutorialsdesk.model
- Filename: UserRole.java
package com.tutorialsdesk.model;
import javax.persistence.Column;
import javax.persistence.Entity;
import javax.persistence.FetchType;
import javax.persistence.GeneratedValue;
import javax.persistence.Id;
import javax.persistence.JoinColumn;
import javax.persistence.ManyToOne;
import javax.persistence.Table;
import javax.persistence.UniqueConstraint;
import org.hibernate.annotations.GenericGenerator;
@Entity
@Table(name = "user_roles", uniqueConstraints =
@UniqueConstraint(columnNames = { "role", "username" }))
public class UserRole {
private Integer userRoleId;
private User user;
private String role;
public UserRole() {
}
public UserRole(User user, String role) {
this.user = user;
this.role = role;
}
@Id
@GenericGenerator(name="native", strategy = "native")
@GeneratedValue(generator = "native")
@Column(name = "user_role_id", unique = true, nullable = false)
public Integer getUserRoleId() {
return this.userRoleId;
}
public void setUserRoleId(Integer userRoleId) {
this.userRoleId = userRoleId;
}
@ManyToOne(fetch = FetchType.LAZY)
@JoinColumn(name = "username", nullable = false)
public User getUser() {
return this.user;
}
public void setUser(User user) {
this.user = user;
}
@Column(name = "role", nullable = false, length = 45)
public String getRole() {
return this.role;
}
public void setRole(String role) {
this.role = role;
}
}
STEP 13 :- Create Service Interface and Class.
- Package: com.tutorialsdesk.service
- Filename: UserService.java
package com.tutorialsdesk.service;
import com.tutorialsdesk.model.User;
public interface UserService {
public User findUserByName(String username);
}
- Package: com.tutorialsdesk.service.impl
- Filename: UserServiceImpl.java
package com.tutorialsdesk.service.impl;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;
import com.tutorialsdesk.dao.UserDao;
import com.tutorialsdesk.model.User;
import com.tutorialsdesk.service.UserService;
@Service("userService")
@Transactional
public class UserServiceImpl implements UserService {
@Autowired
private UserDao dao;
@Override
public User findUserByName(String username) {
return dao.findUserByName(username);
}
}
STEP 14 :- Create Dao Interface and Class.
- Package: com.tutorialsdesk.dao
- Filename: UserDao.java
package com.tutorialsdesk.dao;
import com.tutorialsdesk.model.User;
public interface UserDao {
public User findUserByName(String username);
}
- Package: com.tutorialsdesk.dao.impl
- Filename: UserDaoImpl.java
package com.tutorialsdesk.dao.impl;
import java.util.ArrayList;
import java.util.List;
import org.hibernate.SessionFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Repository;
import com.tutorialsdesk.dao.UserDao;
import com.tutorialsdesk.model.User;
@Repository("userDao")
public class UserDaoImpl implements UserDao {
@Autowired
private SessionFactory sessionFactory;
@SuppressWarnings("unchecked")
@Override
public User findUserByName(String username) {
List<User> userList = new ArrayList<User>();
userList = sessionFactory.getCurrentSession().createQuery("from User where
username=?").setParameter(0, username).list();
if (userList.size() > 0)
return userList.get(0);
else
return null;
}
}
STEP 15 :- Create Custom UserDetailsService Class.
- Package: com.tutorialsdesk.service
- Filename: UserAuthPopulatorImpl.java
package com.tutorialsdesk.service;
import java.util.Collection;
import java.util.HashSet;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.ldap.core.DirContextOperations;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.ldap.userdetails.LdapAuthoritiesPopulator;
import org.springframework.stereotype.Service;
import com.tutorialsdesk.model.UserRole;
import com.tutorialsdesk.service.UserService;
@Service("ldaploginService")
public class UserAuthPopulatorImpl implements LdapAuthoritiesPopulator {
@Autowired
private UserService userService;
@Override
public Collection<? extends GrantedAuthority>
getGrantedAuthorities(DirContextOperations userData, String username) {
Collection<GrantedAuthority> gas = new HashSet<GrantedAuthority>();
com.tutorialsdesk.model.User user = null;
try {
user = userService.findUserByName(username);
} catch (Exception e) {
System.out.println("User Not Found");
e.printStackTrace();
}
if(user!=null){
for(UserRole role : user.getUserRole()){
if(role.getRole().equalsIgnoreCase("ROLE_ADMIN")){
gas.add(new SimpleGrantedAuthority("ROLE_ADMIN"));
}
else if(role.getRole().equalsIgnoreCase("ROLE_USER")){
gas.add(new SimpleGrantedAuthority("ROLE_USER"));
}else if(role.getRole().equalsIgnoreCase("ROLE_API")){
gas.add(new SimpleGrantedAuthority("ROLE_API"));
}
else{
gas.add(new SimpleGrantedAuthority("ROLE_NA"));
}
}
}
return gas;
}
}
STEP 16 :- Create a LDIF file in /WebContent/WEB-INF/conf/users.ldif file as below :-
version: 1 dn: o=tutorialsdesk objectClass: organization objectClass: extensibleObject objectClass: top o: tutorialsdesk dn: ou=users,o=tutorialsdesk objectClass: extensibleObject objectClass: organizationalUnit objectClass: top ou: users dn: ou=groups,o=tutorialsdesk objectClass: extensibleObject objectClass: organizationalUnit objectClass: top ou: groups dn: cn=User,ou=groups,o=tutorialsdesk objectClass: groupOfUniqueNames objectClass: top cn: User uniqueMember: cn=Normal User,ou=users,o=tutorialsdesk uniqueMember: cn=Api User,ou=users,o=tutorialsdesk uniqueMember: cn=Admin User,ou=users,o=tutorialsdesk dn: cn=Admin,ou=groups,o=tutorialsdesk objectClass: groupOfUniqueNames objectClass: top cn: Admin uniqueMember: cn=Admin User,ou=users,o=tutorialsdesk dn: cn=Api,ou=groups,o=tutorialsdesk objectClass: groupOfUniqueNames objectClass: top cn: Api uniqueMember: cn=Api User,ou=users,o=tutorialsdesk uniqueMember: cn=Admin User,ou=users,o=tutorialsdesk dn: cn=Normal User,ou=users,o=tutorialsdesk objectClass: organizationalPerson objectClass: person objectClass: inetOrgPerson objectClass: top cn: Normal User sn: Normal uid: user userPassword:: cGFzcw== dn: cn=Admin User,ou=users,o=tutorialsdesk objectClass: organizationalPerson objectClass: person objectClass: inetOrgPerson objectClass: top cn: Admin User sn: Admin uid: adminuser userPassword:: cGFzcw== dn: cn=Api User,ou=users,o=tutorialsdesk objectClass: organizationalPerson objectClass: person objectClass: inetOrgPerson objectClass: top cn: Api User sn: Api uid: apiuser userPassword:: cGFzcw==STEP 17 :- Create jsp files in /WebContent/WEB-INF/views folder
- Filename: login.jsp
<%@ taglib prefix="c"
uri="http://java.sun.com/jsp/jstl/core"%>
<%@page session="true"%>
<html>
<head>
<title>Login Page</title>
<style>
.error {
padding: 15px;
margin-bottom: 20px;
border: 1px solid transparent;
border-radius: 4px;
color: #a94442;
background-color: #f2dede;
border-color: #ebccd1;
}
.msg {
padding: 15px;
margin-bottom: 20px;
border: 1px solid transparent;
border-radius: 4px;
color: #31708f;
background-color: #d9edf7;
border-color: #bce8f1;
}
#login-box {
width: 300px;
padding: 20px;
margin: 100px auto;
background: #fff;
-webkit-border-radius: 2px;
-moz-border-radius: 2px;
border: 1px solid #000;
}
</style>
</head>
<body onload='document.loginForm.username.focus();'>
<h1>Spring Security Login Form (LDAP Authentication)</h1>
<div id="login-box">
<h2>Login with Username and Password</h2>
<c:if test="${not empty error}">
<div class="error">${error}</div>
</c:if>
<c:if test="${not empty msg}">
<div class="msg">${msg}</div>
</c:if>
<form name='loginForm'
action="<c:url value='/login' />" method='POST'>
<table>
<tr>
<td>User:</td>
<td><input type='text' name='username'></td>
</tr>
<tr>
<td>Password:</td>
<td><input type='password' name='password' /></td>
</tr>
<tr>
<td colspan='2'><input name="submit"
type="submit"
value="submit" /></td>
</tr>
</table>
<input type="hidden" name="${_csrf.parameterName}"
value="${_csrf.token}" />
</form>
</div>
</body>
</html>
- Filename: welcome.jsp
<%@ page language="java" contentType="text/html;
charset=ISO-8859-1" pageEncoding="ISO-8859-1"%>
<%@ taglib prefix="c"
uri="http://java.sun.com/jsp/jstl/core"%>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html;
charset=ISO-8859-1">
<title>HelloWorld page</title>
</head>
<body>
Greeting : ${greeting}
This is a welcome page. <a href="<c:url value="/logout"
/>">Logout</a>
<br/><br/>
Go to Admin page <a href="<c:url value="/admin"
/>">click here</a><br/><br/>
Go to API page <a href="<c:url value="/api"
/>">click here</a>
</body>
</html>
- Filename: admin.jsp
<%@ page language="java" contentType="text/html;
charset=ISO-8859-1" pageEncoding="ISO-8859-1"%>
<%@ taglib prefix="c"
uri="http://java.sun.com/jsp/jstl/core"%>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html;
charset=ISO-8859-1">
<title>HelloWorld Admin page</title>
</head>
<body>
Dear <strong>${user}</strong>, Welcome to Admin Page.
<br/><br/><a href="<c:url value="/home"
/>">Home</a> | <a href="<c:url
value="/logout" />">Logout</a>
</body>
</html>
- Filename: accessDenied.jsp
<%@ page language="java" contentType="text/html;
charset=ISO-8859-1" pageEncoding="ISO-8859-1"%>
<%@ taglib prefix="c"
uri="http://java.sun.com/jsp/jstl/core"%>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html;
charset=ISO-8859-1">
<title>AccessDenied page</title>
</head>
<body>
Dear <strong>${user}</strong>, You are not authorized to access this page
<br/><br/><a href="<c:url value="/home"
/>">Home</a> | <a href="<c:url
value="/logout" />">Logout</a>
</body>
</html>
- Filename: api.jsp
<%@ page language="java" contentType="text/html;
charset=ISO-8859-1" pageEncoding="ISO-8859-1"%>
<%@ taglib prefix="c"
uri="http://java.sun.com/jsp/jstl/core"%>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html;
charset=ISO-8859-1">
<title>DBA page</title>
</head>
<body>
Dear <strong>${user}</strong>, Welcome to API Page.
<br/><br/><a href="<c:url value="/home"
/>">Home</a> | <a href="<c:url
value="/logout" />">Logout</a>
</body>
</html>
STEP 18 :- Run your project enter below URL in your browser
http://localhost:8080/SpringSecurityHrbridLdapJavaConfig/
Keep visiting TutorialsDesk for more tutorials and practical programming examples on Spring MVC.
Hope we are able to explain you Spring MVC Security LDAP Authentication Hibernate Authorization Java Config Example, if you have any questions or suggestions please write to us using contact us form.
Please share us on social media if you like the tutorial.
Blogger Comment
Facebook Comment