@Override
protected void configure(HttpSecurity http) throws Exception {
String loginPage = "/login";
http
.exceptionHandling()
.authenticationEntryPoint(new AjaxAuthenticationEntryPoint(loginPage))
.and()
.addFilterBefore(new LocaleFilter(localeResolver), UsernamePasswordAuthenticationFilter.class)
...
}
import java.io.IOException;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint;
import com.zhqn.sc.utils.CommonsUtils;
public class AjaxAuthenticationEntryPoint extends LoginUrlAuthenticationEntryPoint{
public AjaxAuthenticationEntryPoint(String loginFormUrl) {
super(loginFormUrl);
}
@Override
public void commence(HttpServletRequest request, HttpServletResponse response,
AuthenticationException authException) throws IOException, ServletException {
if (CommonsUtils.isAjax(request)) {
String redirectUrl = buildRedirectUrlToLoginPage(request, response, authException);
response.setHeader("redirectUrl", redirectUrl);
response.sendError(HttpServletResponse.SC_FORBIDDEN);
}else {
super.commence(request, response, authException);
}
}
}
$(document).ajaxError(function(event,xhr,options,exc){
if(xhr.status == 403 && xhr.getResponseHeader("redirectUrl")) {
window.top.location.href = xhr.getResponseHeader("redirectUrl");
}
});