Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-07-13 22:03:33 +00:00
Code Issues Packages Projects Releases Wiki Activity

after invocation, restore pre-RunAs Authentication regardless of exception that may be thrown by method being intercepted

Browse Source
This commit is contained in:
Colin Sampaleanu 2004-04-21 21:09:39 +00:00
parent 302ae5a391
commit ab9e783f79
1 changed files with 16 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
core/src/main/java/org/acegisecurity/intercept/AbstractSecurityInterceptor.java
View File

@ -321,20 +321,23 @@ public abstract class AbstractSecurityInterceptor implements InitializingBean {
+ runAs.toString());
}
context.setAuthentication(runAs);
ContextHolder.setContext((Context) context);
SecureContext origSecureContext = null;
try {
origSecureContext = (SecureContext) ContextHolder.getContext();
context.setAuthentication(runAs);
ContextHolder.setContext((Context) context);
Object ret = callback.proceedWithObject(object);
if (logger.isDebugEnabled()) {
logger.debug("Reverting to original Authentication: "
+ authenticated.toString());
return callback.proceedWithObject(object);
}
finally {
if (logger.isDebugEnabled()) {
logger.debug("Reverting to original Authentication: "
+ authenticated.toString());
}
context.setAuthentication(authenticated);
ContextHolder.setContext((Context) context);
return ret;
origSecureContext.setAuthentication(authenticated);
ContextHolder.setContext(origSecureContext);
}
}
} else {
if (logger.isDebugEnabled()) {