Multiple security providers in Grails with Spring Security

Question

In Grails with Spring Security, how can I run different spring security plugins for different domains?

For a few methods on a controller I want them to be secured with a normal username/password, which is stored in my database. For a different domain name though, I want to use another method, which in my case is shibboleth.

For example: If you were to acceces example.com/abc you would be redirected to a user/pass page. If you were to access the same webapp as sub.example.com/abc you would be led through the shibboleth login flow.

The idea is to support users that create an account and also those authenticating with an existing 3rd party account.

How is that subdomain being passed along to grails? Is there an apache infront or something else? — Jeff Beck, Apr 09 '13 at 16:56
In this case, yes, although it could also just be tomcat configured to listen on multiple aliases. — user605331, Apr 09 '13 at 17:39

score 0 · Answer 1 · answered Apr 09 '13 at 18:08

0

At the start you can use the filterChain.chainMap to change out the different filters for different urls which will allow to switch between providers, but I'm not sure about is dealing with the subdomains. The doc for the chainMap.

answered Apr 09 '13 at 18:08

Jeff Beck

3,944
3
28
45

Multiple security providers in Grails with Spring Security

1 Answers1