我一直在我的一个应用程序中做这样的事情。我用过
生成所有 mypackage.User
User 是扩展 SecUser 的类(由 Spring Security Core 创建的域对象)。我将此代码添加到 UserController:
def springSecurityService // injection of Spring Security
def create() {
def user = springSecurityService.getPrincipal()
[userInstance: new User(params)]
}
def save() {
def map=params
def userInstance = new User(params)
if (!userInstance.save(flush: true)) {
render(view: "create", model: [userInstance: userInstance])
return
}
if (!userInstance.authorities.contains(SecRole.findByAuthority(params.role))) {
SecUserSecRole.create userInstance, SecRole.findByAuthority(params.role)
}
flash.message = message(code: 'default.created.message', args: [message(code: 'user.label', default: 'User'), userInstance.id])
redirect(action: "show", id: userInstance.id)
}
在 BootStrap 类中,我做了一些角色:
def springSecurityService
def init = { servletContext ->
def userRole = SecRole.findByAuthority('ROLE_USER') ?: new SecRole(authority: 'ROLE_USER').save(failOnError: true)
def adminRole = SecRole.findByAuthority('ROLE_ADMIN') ?: new SecRole(authority: 'ROLE_ADMIN').save(failOnError: true)
def moderatorRole = SecRole.findByAuthority('ROLE_MODERATOR') ?: new SecRole(authority: 'ROLE_MODERATOR').save(failOnError: true)
}
在 user/_form.gsp 模板中,我添加了这个选择来选择角色并将其发送到params
<sec:ifAllGranted roles="ROLE_ADMIN">
<g:select name="role" from="${['ROLE_USER', 'ROLE_MODERATOR', 'ROLE_ADMIN']}" value='ROLE_MODERATOR'/>
</sec:ifAllGranted>
<sec:ifNotLoggedIn>
<div class="hidden"><g:textField name="role" value="ROLE_USER"/></div>
</sec:ifNotLoggedIn>