Hi After more investigation, it seems that if you use Wicket 6 and Spring Security 3 all works as expected. However Wicket 7 and Spring Security 4 and you get the behaviour I am facing. Spring Security seems to take care of the whole login process.
David On 6 January 2017 at 18:38, David Beer <david.m.b...@gmail.com> wrote: > Hi Martin > > Happy New Year. > > Thanks for this. I have managed to get Started and have a configuration > which indeed allows authenticated user to a specifc page. I can login and > logout and it cleans the session, however I am having a hard time getting > and displaying errors. > > My demo project is located on github here https://github.com/ > dmbeer/wicket-7-spring-security/tree/master. I wondered if could have a > quick look and see if everything is correct and point me in the right > direction for obtaining the error messages. > > Thanks > > David > > On 31 December 2016 at 06:12, Martin Grigorov <martin.grigo...@gmail.com> > wrote: > >> Hi David, >> >> Latest Spring Security release is 4.1.4, there is no 7.x ;-) >> >> I cannot share my project but the integration is quite simple. >> >> 1) define the Spring config (with an impl of UserDetailsService!) >> 2) in your login logic (MyAuthenticatedWebSession#signin() or >> MyLoginForm#onSubmit()) use Spring AuthenticationService#authenticate(new >> UsernamePasswordAuthenticationToken(username, password)) >> 3) if 2) is successful then you can use >> SecurityContextHolder.getContext().getUser() to get the User returned by >> your UserDetailsService with its authorities, i.e. roles. You can use them >> in Wicket's RolesAuthorizationStrategy >> 4) if 2) is not successful then Spring Security will throw very specific >> exception with the reason >> >> P.S. I am on my phone now, without access to the application code, so some >> class/method names might be slightly wrong but I hope they are good enough >> to get you going! >> >> Happy New Year! >> >> On Dec 30, 2016 8:23 PM, "David Beer" <david.m.b...@gmail.com> wrote: >> >> > Hi All >> > >> > I am trying to add spring security to wicket 7. I have looked at example >> > thomberges did but that doesn't really seem to work. If I comment out >> the >> > code in the SecureWebsession all still seems to authenticate somehow. >> > >> > Is there an up to date project anyone has of integrating spring security >> > with apache wicket? It would be really useful if a basic project could >> be >> > shared. >> > >> > Thanks >> > David >> > >> > Happy New Year All >> > >> > >