Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- @RequestMapping(value = "/hello.do", method = RequestMethod.GET)
- public ModelAndView helloPage() {
- ModelAndView model = new ModelAndView();
- model.addObject("title", "Spring Security Login Form - Database Authentication");
- model.addObject("message", "This page is for ROLE_ADMIN only!");
- model.setViewName("hello");
- return model;
- }
- <form name='loginForm'
- action="<c:url value='/hello.do' />" method='POST'>
- <table>
- <tr>
- <td>User:</td>
- <td><input type='text' name='username'></td>
- </tr>
- <tr>
- <td>Password:</td>
- <td><input type='password' name='password' /></td>
- </tr>
- <tr>
- <td colspan='2'><input name="submit" type="submit"
- value="submit" /></td>
- </tr>
- </table>
- <input type="hidden" name="${_csrf.parameterName}"
- value="${_csrf.token}" />
- </form>
- <sec:authorize access="hasRole('ROLE_ADMIN')">
- <!-- For login user -->
- <c:url value="/logout" var="logoutUrl" />
- <form action="${logoutUrl}" method="post" id="logoutForm">
- <input type="hidden" name="${_csrf.parameterName}"
- value="${_csrf.token}" />
- </form>
- <script>
- function formSubmit() {
- document.getElementById("logoutForm").submit();
- }
- </script>
- <c:if test="${pageContext.request.userPrincipal.name != null}">
- <h2>
- User : ${pageContext.request.userPrincipal.name} | <a
- href="javascript:formSubmit()"> Logout</a>
- </h2>
- </c:if><h1>hola admin</h1>
- </sec:authorize>
- <sec:authorize access="hasRole('ROLE_USER')">
- <!-- For login user -->
- <c:url value="/logout" var="logoutUrl" />
- <form action="${logoutUrl}" method="post" id="logoutForm">
- <input type="hidden" name="${_csrf.parameterName}"
- value="${_csrf.token}" />
- </form>
- <script>
- function formSubmit() {
- document.getElementById("logoutForm").submit();
- }
- </script>
- <c:if test="${pageContext.request.userPrincipal.name != null}">
- <h2>
- User : ${pageContext.request.userPrincipal.name} | <a
- href="javascript:formSubmit()"> Logout</a>
- </h2>
- </c:if><h1>hola USUARIO</h1>
- </sec:authorize>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement