posted 9 years ago
I have existing spring-security which accept xml header and throws an error message if xml received is malformed, basically it filters all request. I have config like this.
preAuthFilter - parse the xml receive then set the important attribute.
loginAuthenticationEntryPoint - retrieve the attribute that has been set then authenticate the user.
Now I have a task to have an exemption if url received is different (e.g. url received is = "/customer/sample/**").
I have an two ideas, just ideas I actually don't know I possible
1. allow mutliple entry entry points, but I really don't know if possible.
2. create another custom-filter before preAuthFilter. So I have something like this.
then my preAuthFilterBefore parse also an xml which I formed.
And then have a condition in loginAuthenticationEntryPoint if request is not null then I will set my authentication.
Any ideas? Which is better or is there another way?
Thanks.