Hi Val, Thanks for the response, we have executed ignite filter before spring security filter but somehow the ignite filter does not do the job of setting spring principle context.
As a result even though we have spring principle in session, spring filter does not recognize it and sends us back to log in page. I think there s some more work needed here to change the filter and make it work with spring boot application. Take Care, Rishi > On Mar 5, 2017, at 10:16 AM, Valentin Kulichenko > <valentin.kuliche...@gmail.com> wrote: > > Hi Rishi, > > I did some debugging. Apparently, the reason for this behavior is that > Spring Security filter resides before Ignite's filter in the chain list. I > think that eventually this should be fixed in the product, but in the > meantime there must be a way to work around the problem by controlling the > order. Do you know how this can be done in Spring Boot? > > -Val > >> On Tue, Feb 28, 2017 at 9:31 AM, Rishi Yagnik <rishiyag...@gmail.com> wrote: >> >> Hi Val, >> >> Sorry for pestering, thanks for all your help. >> >> Rishi >> >> On Mon, Feb 27, 2017 at 7:22 PM, Valentin Kulichenko < >> valentin.kuliche...@gmail.com> wrote: >> >>> Hi Rishi, >>> >>> Sorry, not yet. But this on my short list of TODOs, will try to give an >>> update as soon as possible. >>> >>> -Val >>> >>> On Mon, Feb 27, 2017 at 7:47 AM, Rishi Yagnik <rishiyag...@gmail.com> >>> wrote: >>> >>>> Hi Val, >>>> >>>> any update on session replication issue ? >>>> >>>> Thanks, >>>> Rishi >>>> >>>> On Thu, Feb 23, 2017 at 8:07 AM, Rishi Yagnik <rishiyag...@gmail.com> >>>> wrote: >>>> >>>>> Thanks Val for looking into it. >>>>> >>>>> On Wed, Feb 22, 2017 at 9:32 PM, Valentin Kulichenko < >>>>> valentin.kuliche...@gmail.com> wrote: >>>>> >>>>>> Hi Rishi, >>>>>> >>>>>> Got it, I think I'm reproducing the issue. I'll take a look and let >>> you >>>>>> know my findings soon. >>>>>> >>>>>> -Val >>>>>> >>>>>> On Tue, Feb 21, 2017 at 7:27 PM, Rishi Yagnik < >> rishiyag...@gmail.com> >>>>>> wrote: >>>>>> >>>>>>> Hi Val, >>>>>>> >>>>>>> The issue will occur in cluster environment, please setup the >> spring >>>>>> boot >>>>>>> on 2 different host with LB (F5 OR Reverse proxy) in front and try >>> to >>>>>>> login. >>>>>>> >>>>>>> In cluster environment, Spring security does not recognize the >>> session >>>>>> on >>>>>>> the host you are not logged in, as a result, spring security will >>>>>> redirect >>>>>>> to login url however the correct behavior should be that user >> would >>>> stay >>>>>>> logged in with session replication. >>>>>>> >>>>>>> Do let me know if you need more information. >>>>>>> >>>>>>> Thanks, >>>>>>> Rishi >>>>>>> >>>>>>> >>>>>>> >>>>>>> On Tue, Feb 21, 2017 at 7:08 PM, Valentin Kulichenko < >>>>>>> valentin.kuliche...@gmail.com> wrote: >>>>>>> >>>>>>>> Hi Rishi, >>>>>>>> >>>>>>>> I was able to build and run the application. Can you give some >>>>>>> description >>>>>>>> on what should I test to understand the issue? What exactly >> didn't >>>>>> work >>>>>>> for >>>>>>>> you? >>>>>>>> >>>>>>>> -Val >>>>>>>> >>>>>>>> On Wed, Feb 15, 2017 at 10:52 AM, Valentin Kulichenko < >>>>>>>> valentin.kuliche...@gmail.com> wrote: >>>>>>>> >>>>>>>>> Hi Rishi, >>>>>>>>> >>>>>>>>> Thanks, I'll take a look. >>>>>>>>> >>>>>>>>> -Val >>>>>>>>> >>>>>>>>> On Wed, Feb 15, 2017 at 9:07 AM, Rishi Yagnik < >>>>>> rishiyag...@gmail.com> >>>>>>>>> wrote: >>>>>>>>> >>>>>>>>>> Hi Val, >>>>>>>>>> >>>>>>>>>> As promised, please find attached code for spring boot >>>> integration >>>>>>> with >>>>>>>>>> spring security along with Ignite. >>>>>>>>>> >>>>>>>>>> Some more information on project - >>>>>>>>>> >>>>>>>>>> - It is a maven project ( Ignite 1.7.0, SB 1.4.3 ) >>>>>>>>>> - spring security integrated with boot project along with >>>> ignite >>>>>>>>>> - HttpSessionCookieCsrfTokenRepository does not work, >> gives >>>>>>>>>> intermediate errors on single instance so used >>>>>>>> CookieCsrfTokenRepository >>>>>>>>>> for CSRF token, again I think we need a fix here from >>> Ignite. >>>>>>>>>> >>>>>>>>>> I cant reproduce this errors while I am running on single >>>> instance, >>>>>>> you >>>>>>>>>> need to run this app on 2 spring boot instance having proxy >> in >>>>>> front ( >>>>>>>> F5, >>>>>>>>>> OR any proxy ) with round robin fashion ( no sticky session >> on >>> F5 >>>>>> OR >>>>>>>>>> proxies ). >>>>>>>>>> >>>>>>>>>> We were thinking with round robin the user session will >> active >>>>>> since >>>>>>> we >>>>>>>>>> used session replication on backend. >>>>>>>>>> >>>>>>>>>> Do let me know if you need more information here. >>>>>>>>>> >>>>>>>>>> Thanks, >>>>>>>>>> >>>>>>>>>> Rishi >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> On Tue, Feb 14, 2017 at 9:57 PM, Rishi Yagnik < >>>>>> rishiyag...@gmail.com> >>>>>>>>>> wrote: >>>>>>>>>> >>>>>>>>>>> Val, >>>>>>>>>>> >>>>>>>>>>> My SB sample project is ready however I have asked for an >>>>>> approval to >>>>>>>>>>> submit sample project to you, it would take day or two. >>>>>>>>>>> >>>>>>>>>>> I will keep you posted. >>>>>>>>>>> >>>>>>>>>>> Thanks for all your help, >>>>>>>>>>> >>>>>>>>>>> On Tue, Feb 14, 2017 at 3:51 PM, Rishi Yagnik < >>>>>> rishiyag...@gmail.com >>>>>>>> >>>>>>>>>>> wrote: >>>>>>>>>>> >>>>>>>>>>>> Let me build an example app for you and send it across to >>> you. >>>>>>>>>>>> >>>>>>>>>>>> Thanks, >>>>>>>>>>>> >>>>>>>>>>>> On Tue, Feb 14, 2017 at 3:28 PM, Valentin Kulichenko < >>>>>>>>>>>> valentin.kuliche...@gmail.com> wrote: >>>>>>>>>>>> >>>>>>>>>>>>> Rishi, >>>>>>>>>>>>> >>>>>>>>>>>>> No I don't, and I think that's what we should start with. >> I >>>>>> want to >>>>>>>>>>>>> understand a use case that is currently not supported (if >>> any) >>>>>> and >>>>>>>> then >>>>>>>>>>>>> find the best solution. And I would like to reuse existing >>>> code >>>>>> as >>>>>>>>>>>>> much as >>>>>>>>>>>>> possible. >>>>>>>>>>>>> >>>>>>>>>>>>> Do you have any code that reproduces the problem you had >> and >>>> how >>>>>>> you >>>>>>>>>>>>> tried >>>>>>>>>>>>> to utilize current web session clustering? Can you share >> it >>>> with >>>>>>> us? >>>>>>>>>>>>> >>>>>>>>>>>>> -Val >>>>>>>>>>>>> >>>>>>>>>>>>> On Tue, Feb 14, 2017 at 11:28 AM, Rishi Yagnik < >>>>>>>> rishiyag...@gmail.com> >>>>>>>>>>>>> wrote: >>>>>>>>>>>>> >>>>>>>>>>>>>> Hi Val, >>>>>>>>>>>>>> >>>>>>>>>>>>>> I am working on SB platform with spring security and we >>>> found >>>>>> out >>>>>>>>>>>>> that the >>>>>>>>>>>>>> web session filter ignite provides does not work for >>> session >>>>>>>>>>>>> management on >>>>>>>>>>>>>> 2 node spring boot cluster. >>>>>>>>>>>>>> >>>>>>>>>>>>>> Somehow, spring security filter kicks in result in some >>>> weird >>>>>>>> errors >>>>>>>>>>>>> with >>>>>>>>>>>>>> web session filter. >>>>>>>>>>>>>> >>>>>>>>>>>>>> So making compatible with spring security somehow, we >> need >>>> to >>>>>>> write >>>>>>>>>>>>>> implementation on spring session. >>>>>>>>>>>>>> >>>>>>>>>>>>>> Do you have any test cases that says web session filter >>>> would >>>>>>> work >>>>>>>>>>>>> with >>>>>>>>>>>>>> spring security on boot platform ? >>>>>>>>>>>>>> >>>>>>>>>>>>>> Thanks, >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> On Tue, Feb 14, 2017 at 1:03 PM, Valentin Kulichenko < >>>>>>>>>>>>>> valentin.kuliche...@gmail.com> wrote: >>>>>>>>>>>>>> >>>>>>>>>>>>>>> Hi Rishi, >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> Can you please take a look at web session clustering >>>> feature >>>>>>> [1] >>>>>>>>>>>>> provided >>>>>>>>>>>>>>> by Ignite? I'm looking at Spring Session docs and it >>> seems >>>>>> to >>>>>>> me >>>>>>>>>>>>> it does >>>>>>>>>>>>>>> exactly the same - replaces HttpSession with custom >>>>>>>> implementation >>>>>>>>>>>>> that >>>>>>>>>>>>>> has >>>>>>>>>>>>>>> a backend storage. If it doesn't provide any >> additional >>>> API >>>>>> or >>>>>>>>>>>>>>> functionality, I'm not sure I understand the benefit >> of >>>> this >>>>>>>>>>>>> feature. >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> Let me know if I'm missing something. >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> [1] https://apacheignite-mix. >>> readme.io/docs/web-session- >>>>>>>> clustering >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> -Val >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> On Mon, Feb 13, 2017 at 2:41 PM, Rishi Yagnik < >>>>>>>>>>>>> rishiyag...@gmail.com> >>>>>>>>>>>>>>> wrote: >>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> I would like to discuss session replication / fail >>> over >>>>>>> design >>>>>>>> on >>>>>>>>>>>>>> spring >>>>>>>>>>>>>>>> boot platform and wanted to find what is the best >> out >>> to >>>>>> get >>>>>>>>>>>>> started >>>>>>>>>>>>>>> here ? >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> Possible approaches are as follows - >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> - Make use of Spring Session for session >>> replication >>>>>> and >>>>>>>> fail >>>>>>>>>>>>> over >>>>>>>>>>>>>>>> - Extend the web session filter and make it work >> on >>>>>> spring >>>>>>>>>>>>> boot >>>>>>>>>>>>>>>> application >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> I am thinking that best approach would be to get >>> started >>>>>> here >>>>>>>>>>>>> with >>>>>>>>>>>>>> spring >>>>>>>>>>>>>>>> session design however I am open for feedback here. >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> -- >>>>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> -- >>>>>>>>>>>> Rishi Yagnik >>>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> -- >>>>>>>>>>> Rishi Yagnik >>>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> -- >>>>>>>>>> Rishi Yagnik >>>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> Rishi Yagnik >>>>>>> >>>>>> >>>>> >>>>> >>>>> >>>>> -- >>>>> Rishi Yagnik >>>>> >>>> >>>> >>>> >>>> -- >>>> Rishi Yagnik >>>> >>> >> >> >> >> -- >> Rishi Yagnik >>
