3 Replies Latest reply on Jul 12, 2012 9:38 AM by atdavie

Seam 3 Security and getRemoteUser

atdavie Feb 15, 2012 3:22 AM

I am trying to pick up the remote user from a security filter called spnego (as per the sourceforge project). This works fine with Seam 2. However with Seam 3.0 I always receive a null value. This is despite the JSP test page displaying the expected value. So it seems everything is working such that JSP can pick the value up and something thereafter is resetting the remoteuser.

e.g. code inside Seam 2 custom Authenticate method:

HttpServletRequest request = ServletContexts.getInstance().getRequest(); username = request.getRemoteUser();

In the Seam 3 I use a custom authenticator and try the same method, and variations on it. e.g.

@Inject HttpServletRequest httpRequest; 
@Inject FacesContext fc ;  
...
user = httpRequest.getRemoteUser(); 
String alt=FacesContext.getCurrentInstance().getExternalContext().getRemoteUser(); 
String alt2=fc.getExternalContext().getRemoteUser(); 
String alt3=fc.getCurrentInstance().getExternalContext().getRemoteUser();

I know the request is coming in ok as I get sensible values for other parts of the request, e.g. request.getContextPath();

1. Re: Seam 3 Security and getRemoteUser

lightguard Feb 15, 2012 5:03 PM (in response to atdavie)

Which server, version, and version of seam are you using?
Actions
2. Re: Seam 3 Security and getRemoteUser

atdavie Feb 16, 2012 3:03 AM (in response to lightguard)

I am using Java 1.6.24 (there was an odd problem with a later version and weld), Jboss AS 6.1, Seam 3.1, and CDI/Weld 1.1. I also have Seam Faces and Seam Security installed - and ofc JSF 2.0
Actions
3. Re: Seam 3 Security and getRemoteUser

atdavie Jul 12, 2012 9:38 AM (in response to atdavie)

It is in fact possible to access this variable the following ways:

JSF
#{facesContext.externalContext.request.remoteUser}

Authenticator
@Inject FacesContext fc;
user = fc.getExternalContext().getRemoteUser();
Actions

Go to original post