---
toc: true
comments: true
layout: post
title: Thymeleaf Login Redirection
description: Aniket lesson part - Error handling when JWT is not good
type: tangibles
permalink: /loginredirection
---

### Login Redirection

When it comes to login redirection and Thymeleaf, the connection lies in how you structure and render your HTML templates to handle the redirection logic. Thymeleaf allows you to handle redirection by specifying URLs or endpoints in your controller methods. When a redirection occurs, Thymeleaf takes care of generating the appropriate HTML response with the redirection information.

1. **Dynamic Content with Thymeleaf:**
   Thymeleaf is a template engine that allows you to embed dynamic content directly into your HTML templates. It uses expressions and attributes to integrate with the server-side data. In the context of login redirection, Thymeleaf enables you to conditionally display content based on the state of the application, such as whether a user is authenticated or not.

   ```html
   <!-- Display username if authenticated -->
   <div th:if="${session.username}">
       <p>Welcome, <span th:text="${session.username}"></span>!</p>
   </div>
   ```

   Here, Thymeleaf checks if the `session.username` attribute exists (indicating authentication) and displays a welcome message with the username if true.

2. **Redirection Handling in Templates:**
   Thymeleaf allows you to handle redirection by specifying URLs or endpoints in your controller methods. When a redirection occurs, Thymeleaf takes care of generating the appropriate HTML response with the redirection information.

   ```java
   // Redirect to the home page after successful login
   return "redirect:/home";
   ```

   This line in the controller method instructs Thymeleaf to redirect to the `/home` endpoint. The corresponding template for the home page (`home.html`) can then be designed using Thymeleaf to display content based on the user's authentication status.

3. **Conditional Rendering in Templates:**
   Thymeleaf makes it easy to conditionally render content based on variables or expressions. For example, you might want to show different content to authenticated and non-authenticated users.

   ```html
   <!-- Conditional rendering based on authentication status -->
   <div th:if="${session.username}">
       <p>Welcome, <span th:text="${session.username}"></span>!</p>
       <!-- Other authenticated user content -->
   </div>
   <div th:unless="${session.username}">
       <p>Please log in to access the content.</p>
       <!-- Login form or login-related content -->
   </div>
   ```

   Here, Thymeleaf checks whether the `session.username` attribute exists. If it does, it displays a welcome message; otherwise, it prompts the user to log in.

4. **Error Handling and Display:**
   Thymeleaf can also be used to handle and display errors in your templates. For instance, when authentication fails, you can add an error message to the model, and Thymeleaf can render this message on the login page.

   ```java
   // Authentication failed, add an error message to the model
   model.addAttribute("error", "Invalid username or password");
   // Redirect back to the login page
   return "login";
   ```

   In the `login.html` template, you can then use Thymeleaf to conditionally display the error message.

   ```html
   <!-- Display error message if present -->
   <div th:if="${error}" style="color: red;">
       <p th:text="${error}"></p>
   </div>
   ```

   Thymeleaf's conditional rendering allows you to dynamically show or hide elements based on the existence of error messages.

  ### So now here's a full example:


In [None]:
import org.springframework.stereotype.Controller;
import org.springframework.ui.Model;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestParam;

import javax.servlet.http.HttpSession;

@Controller
public class LoginController {

    @PostMapping("/login")
    public String login(@RequestParam String username,
                        @RequestParam String password,
                        HttpSession session,
                        Model model) {
        // Replace this with your actual authentication logic
        if ("admin".equals(username) && "password".equals(password)) {
            // Authentication successful, create a session
            session.setAttribute("username", username);
            // Redirect to the home page after successful login
            return "redirect:/home";
        } else {
            // Authentication failed, add an error message to the model
            model.addAttribute("error", "Invalid username or password");
            // Redirect back to the login page
            return "login";
        }
    }
}



In this example, we are using Spring MVC annotations along with Thymeleaf. Here's how it connects to Thymeleaf:

1. **Controller Annotation:**
   ```java
   @Controller
   ```

   This annotation marks the class as a Spring MVC controller. It tells Spring to consider this class when handling web requests.

2. **RequestMapping Annotation:**
   ```java
   @PostMapping("/login")
   ```

   This annotation maps the `login` method to handle HTTP POST requests to the `/login` endpoint.

3. **Thymeleaf Redirect:**
   ```java
   return "redirect:/home";
   ```

   This line specifies a redirect using Thymeleaf. It tells Spring to redirect to the `home` endpoint. The actual redirection URL will be resolved by the Spring MVC configuration.

4. **Model Attribute for Error:**
   ```java
   model.addAttribute("error", "Invalid username or password");
   ```

   If authentication fails, an error message is added to the model. This message can be displayed on the login page to inform the user about the unsuccessful login attempt.

5. **Returning Template Names:**
   The method returns strings representing the names of Thymeleaf templates. For example, `"login"` refers to the `login.html` template.

In your Thymeleaf template (`login.html`), you can use Thymeleaf expressions to display the error message and create links or buttons for redirection.

Here's a simplified example of a Thymeleaf template (`login.html`):

```html
<!DOCTYPE html>
<html lang="en" xmlns:th="http://www.thymeleaf.org">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Login</title>
</head>
<body>
    <h2>Login</h2>

    <!-- Display error message if present -->
    <div th:if="${error}" style="color: red;">
        <p th:text="${error}"></p>
    </div>

    <!-- Conditional rendering based on authentication status -->
    <div th:if="${session.username}">
        <p>Welcome, <span th:text="${session.username}"></span>!</p>
        <!-- Other authenticated user content -->
        <a href="/logout">Logout</a>
    </div>
    <div th:unless="${session.username}">
        <form action="/login" method="post">
            <label for="username">Username:</label>
            <input type="text" id="username" name="username" required>
            <br>
            <label for="password">Password:</label>
            <input type="password" id="password" name="password" required>
            <br>
            <button type="submit">Login</button>
        </form>
    </div>

</body>
</html>
```

In this example:

- The controller method sets the `error` attribute in the model if authentication fails.
- The Thymeleaf template checks for the presence of the `error` attribute and displays an error message if it exists.
- The template also uses Thymeleaf expressions to conditionally render content based on the existence of `session.username`. If the user is authenticated, it displays a welcome message and a logout link; otherwise, it shows the login form.

Please note that the actual URLs (`/home`, `/login`, `/logout`) and styling will vary based on your specific requirements and application structure. 