Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-07-14 06:13:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

after invocation, restore pre-RunAs Authentication regardless of exception that may be thrown by method being intercepted

Browse Source
This commit is contained in:
Colin Sampaleanu 2004-04-21 21:09:39 +00:00
parent 302ae5a391
commit ab9e783f79
1 changed files with 16 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
core/src/main/java/org/acegisecurity/intercept/AbstractSecurityInterceptor.java
View File

@ -321,20 +321,23 @@ public abstract class AbstractSecurityInterceptor implements InitializingBean {
+ runAs.toString()); + runAs.toString());
} }
SecureContext origSecureContext = null;
try {
origSecureContext = (SecureContext) ContextHolder.getContext();
context.setAuthentication(runAs); context.setAuthentication(runAs);
ContextHolder.setContext((Context) context); ContextHolder.setContext((Context) context);
Object ret = callback.proceedWithObject(object); return callback.proceedWithObject(object);
}
finally {
if (logger.isDebugEnabled()) { if (logger.isDebugEnabled()) {
logger.debug("Reverting to original Authentication: " logger.debug("Reverting to original Authentication: "
+ authenticated.toString()); + authenticated.toString());
} }
context.setAuthentication(authenticated); origSecureContext.setAuthentication(authenticated);
ContextHolder.setContext((Context) context); ContextHolder.setContext(origSecureContext);
}
return ret;
} }
} else { } else {
if (logger.isDebugEnabled()) { if (logger.isDebugEnabled()) {