在處理Spring Security時,您是否通常將當前用戶存儲到會話變量中,或者每次訪問某些用戶信息時是否都打到了數據庫?Spring安全性當前用戶會話Bean
目前,我這樣做,但似乎有點浪費:
public class CurrentUserService {
private UserDAO userDAO;
public CurrentUserService(UserDAO userDAO) {
super();
this.userDAO = userDAO;
}
public User getUser(){
String username=SecurityContextHolder.getContext().getAuthentication().getName();
return userDAO.findUser(username);
}
}