Vaadin 7.1 + Spring-Security Integration running in Tomcat Server

spring spring-security vaadin vaadin7

13,642

Solution 1

Vaadin 7 easy integrate with Spring Security. You should configure only 2 files. First - web.xml and second one spring-security.xml (user credentials and security settings). This is small example how to use base form for authentification.

web.xml

<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns="http://java.sun.com/xml/ns/javaee"
xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
id="WebApp_ID" version="3.0">
<display-name>Vaadin7SpringSecurity</display-name>

<context-param>
    <param-name>contextConfigLocation</param-name>
    <param-value>
        /WEB-INF/spring/spring-security.xml
    </param-value>
</context-param>

<listener>
    <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
</listener>

<!-- filter declaration for Spring Security -->
<filter>
    <filter-name>springSecurityFilterChain</filter-name>
    <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
</filter>

<filter-mapping>
    <filter-name>springSecurityFilterChain</filter-name>
    <url-pattern>/*</url-pattern>
</filter-mapping>
</web-app>

spring-security.xml

<beans:beans xmlns="http://www.springframework.org/schema/security"
xmlns:beans="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.springframework.org/schema/beans
      http://www.springframework.org/schema/beans/spring-beans-3.2.xsd
      http://www.springframework.org/schema/security
      http://www.springframework.org/schema/security/spring-security-3.1.xsd">

<http auto-config='true'>
  <intercept-url pattern="/*" access="ROLE_USER" />
</http>

<authentication-manager>
  <authentication-provider>
    <user-service>
      <user name="user" password="password" authorities="ROLE_USER" />
    </user-service>
  </authentication-provider>
</authentication-manager>  

</beans:beans>

For more details, how to extend spring-security.xml configuration you can use Spring resources.

Solution 2

You should have a look on this GitHub project. This is a Vaadin 7.1 + Spring 3.1.2.RELEASE + Spring-Vaadin integration 2.0.1 project. There is also a Jetty plugin inside, but you can run/deploy it also in tomcat without problems.

13,642

Author by

Admin

Updated on July 11, 2022

Comments

Admin almost 2 years

Im new on vaadin and spring security, I want to know if anyone had a complete project example of the vaadin 7.1 + spring-security integration running in a tomcat server (not in jetty).
Admin over 10 years

Thanks for your answer, I already use the project you mentioned but I don't know why when I enter the credentials and click in the login button I get forwarded to same login page and not to the UI
Admin over 10 years

Thnaks for your reply, I check out the code and I try to translate it to java, but I don't know scala so I had a little problems. I translate almost all, the only classes I have a doubt how to translate them are the NavigationErrorHandlingStrategy and the NavigatorFactory, can you help me translating these two classes to java please?
specializt over 8 years

actually its far from being "easy" - what you're showing is a SPRING application with vaadin SUPPORT - but actually building a VAADIN application with SPRING SECURITY support is ... somewhat hard : vaadin.com/… - sorry but your answer only is valid for a few very limited cases ... for people who want to use vaadin CDI its a real pain to get this going