Spring oauth2 password flow, how use AuthenticationSuccessHandler

Asked Nov 30 '17 at 10:07

Active Oct 23 '20 at 08:52

Viewed 584 times

I am trying to add handler on user login. In basic spring security it could be implemented by this code:

protected void configure(HttpSecurity http) throws Exception {
     http.
     //some configurations
     .formLogin().successHandler(authenticationSuccessHandler);
}

Unfortunalty, this way do not work with oauth2 password flow because user do not authenticate using login form(there is direct request to oauth/token endpoint). I have found this answer, and wonder is there cleaner way?

UPD: If I use Authentica‌tionSuccessEvent - I receive this event on every request, Perhaps because I use JWT authentication.

edited Oct 23 '20 at 08:52

asked Nov 30 '17 at 10:07

Zufar Muhamadeev

3,085
5
23
51

Hello @dur !, i want to save user last login time – Zufar Muhamadeev Nov 30 '17 at 11:45
1

You could use `org.springframework.security.authentication.event.AuthenticationSuccessEvent`. instead of `AuthenticationSuccessHandler`. – dur Nov 30 '17 at 12:32
Thanks for reminding about this event! Yeah, i recieve event with listener, but with jwt authentication i receive this event on every request – Zufar Muhamadeev Dec 01 '17 at 09:27
I have resource and auth server in one application. – Zufar Muhamadeev Dec 01 '17 at 09:46
1

You can check the instance of `Authentication` to find out, if it is a login with password or with JWT. – dur Dec 01 '17 at 09:56
This is how i do it now, wonder is there cleaner way, using success handler – Zufar Muhamadeev Dec 01 '17 at 10:47
how can i distinct between login with password or with JWT in Authentication??. i am in the same situation. Authentica‌tionSuccessEvent fires on every request. – Andres Jul 13 '18 at 03:55
You can use `@EventListener` to listen `AuthenticationSuccessEvent` – akuma8 Oct 23 '20 at 08:58

Spring oauth2 password flow, how use AuthenticationSuccessHandler

0 Answers0