Spring Security
  1. Spring Security
  2. SEC-1251

CLONE -Create JSP tag for retrieving authorization objects in switch user chain

    Details

    • Type: Improvement Improvement
    • Status: Closed
    • Priority: Minor Minor
    • Resolution: Won't Fix
    • Affects Version/s: 2.0.3
    • Fix Version/s: 3.1.0.RC1
    • Component/s: Core, Taglibs
    • Labels:
      None

      Description

      It would be great to have a taglib that exposes the administrator authorization object when the switch user functionality is in use. We use this to determine who the logged in person is when they are 'simulating' someone else. The difficulty from an EL perspective is that the grantedauthorities must be enumerated while looking for the SwitchUserGrantedAuthorityImpl object (which contains the source Authorization).

      A foreach statement in EL can get this done but it is ugly.

        Activity

        Hide
        Jared Stehler added a comment -

        Resurrecting this issue as I didn't see a patch ever get submitted, so I thought I'd lob one of my own in. Simple tag which evaluates its contents (and provides the admin user principal) when it determines that we are running-as another user.

        Show
        Jared Stehler added a comment - Resurrecting this issue as I didn't see a patch ever get submitted, so I thought I'd lob one of my own in. Simple tag which evaluates its contents (and provides the admin user principal) when it determines that we are running-as another user.
        Hide
        Luke Taylor added a comment -

        Thanks for the contribution. However, I don't think this is a sufficiently common requirement that we should add it to the codebase. The switch-user functionality is also something that should probably be looked at to see how it could be improved, so I'm reluctant to add extra code based on it at this stage.

        Show
        Luke Taylor added a comment - Thanks for the contribution. However, I don't think this is a sufficiently common requirement that we should add it to the codebase. The switch-user functionality is also something that should probably be looked at to see how it could be improved, so I'm reluctant to add extra code based on it at this stage.

          People

          • Assignee:
            Luke Taylor
            Reporter:
            Jared Stehler
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: