Is Session needed for my use case in spring mvc ?

Ranch Hand

Posts: 980

posted 8 years ago

Number of slices to send:

Optional 'thank-you' note:

Send

It might seem a silly question, but then

my application have controllers and didn't have any login so far, now i need to have login.

my doubt is regarding ..after login..should i have some attribute in the session that captures if the user is logged in or not?

And also should use a filter/interceptor for checking if the user is logged in

if user tries to hit the direct requestmapping urls..

Regards

Bill Gorder

Bartender

Posts: 1682

I like...

posted 8 years ago

Number of slices to send:

Optional 'thank-you' note:

Send

Yes if you need to login you will need a session, unless you want your users to have to log in again every request they make

Servlet Filters are a good choice for handling authentication. Luckily Spring Security has done most of this work for you, so if you are already using Spring look at using Spring Security to handle this for you.
http://projects.spring.io/spring-security/

[How To Ask Questions][Read before you PM me]