如果您使用Spring Security,则可以将此信息存储在SecurityContext中.诀窍是getDetails()方法,你可以在那里放任何你想要的东西.我个人使用自定义对象来存储当前用户所需的基本信息.此示例只是放置一个代表您的域的简单字符串:
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import org.springframework.security.authentication.AbstractAuthenticationToken;
import org.springframework.security.core.context.SecurityContext;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.stereotype.Component;
import org.springframework.web.servlet.ModelAndView;
import org.springframework.web.servlet.handler.HandlerInterceptorAdapter;
@Component
public class DomainInterceptor extends HandlerInterceptorAdapter {
@Override
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) {
String domain = null; // TODO extra domain from request here
SecurityContext context = SecurityContextHolder.getContext();
AbstractAuthenticationToken authentication = (AbstractAuthenticationToken) context.getAuthentication();
authentication.setDetails(domain);
return true;
}
}
然后,要在应用中的任何位置检索域(对于当前请求),您可以执行以下操作:
String domain = SecurityContextHolder.getContext().getAuthentication().getDetails().toString();