在处理Spring Security时,您是否通常将当前用户存储到会话变量中,或者每次访问某些用户信息时是否都打到了数据库?Spring安全性当前用户会话Bean
目前,我这样做,但似乎有点浪费:
public class CurrentUserService {
private UserDAO userDAO;
public CurrentUserService(UserDAO userDAO) {
super();
this.userDAO = userDAO;
}
public User getUser(){
String username=SecurityContextHolder.getContext().getAuthentication().getName();
return userDAO.findUser(username);
}
}