Skip to content

Commit

Permalink
fix #3: Add check password method
Browse files Browse the repository at this point in the history
  • Loading branch information
@todyDev
todyDev committed Nov 29, 2018
1 parent 3bbaf02 commit 4abda7b
Showing 1 changed file with 9 additions and 0 deletions.
9 changes: 9 additions & 0 deletions securityPrj/src/main/java/tody/common/service/CustomAuthenticationProvider.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@
import org.apache.log4j.Logger;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.authentication.AuthenticationProvider;
import org.springframework.security.authentication.BadCredentialsException;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.AuthenticationException;
Expand All @@ -30,12 +31,20 @@ public Authentication authenticate(Authentication authentication) throws Authent
CustomUserDetails user = (CustomUserDetails) userDeSer.loadUserByUsername(username);
Collection<GrantedAuthority> authorities = (Collection<GrantedAuthority>) user.getAuthorities();

if(!matchPassword(username, user.getPassword())) {
throw new BadCredentialsException(username);
}

return new UsernamePasswordAuthenticationToken(username, password, authorities);
}

@Override
public boolean supports(Class<?> authentication) {
return true;
}

private boolean matchPassword(String loginPwd, String password) {
return loginPwd.equals(password);
}

}

0 comments on commit 4abda7b

Please sign in to comment.