ansaurus

Question

Grails: User evaluator for Commentable with Spring Security plugin

Answer 1

+1 A:

For springSecurityService.principal.id since there's no dependency injection field for springSecurityService it can't work, so you need to call what springSecurityService.principal.id calls - org.springframework.security.core.context.SecurityContextHolder.context.authentication.principal.id

To fix the problem with User, you'll need the full class name with package. So combined, this should be

{com.yourcompany.yourapp.User.get(org.springframework.security.core.context.SecurityContextHolder.context.authentication.principal.id)}

Burt Beckwith 2010-08-22 16:51:38

Thank you very much for your help and the very quick answer. In the meantime, I wrote a small plugin that adds a getCurrentUser to each controller. Then I use the currentUser in the evaluator. It seems to workIs that a bad idea? (I am new to both Groovy and Grails, so wouldn't know if it is an anti-idiom to add this kind of methods)

Nicolas Oury 2010-08-22 17:31:46

That reminded me that there's already a `getPrincipal()` method added by Spring Security Core, so that would shorten the call to `com.yourcompany.yourapp.User.get(principal.id)`, but it would be better to also have a `getCurrentUser` method - I'll add that for the next release.

Burt Beckwith 2010-08-22 23:01:57

ansaurus

tags:

views:

answers:

Grails: User evaluator for Commentable with Spring Security plugin

related questions