Spring + GWT project - execute handler on every user action

Question

I'm new one in Spring, GWT and even Java World. So be patient. We have relatively big project, which one used Spring, GWT, Hibernate and Signal-Com Inter-Pro (Russian solution for html form signing to secure identified clients).

So now when user tried to log in into system, it read certificate s/n from http headers, compare with s/n from database. If they are equal, user can work with system. Otherwise, notify user and security administrator.

My current task is to add this check to every user action, i.e. GWT button click, switching to next view and so on. Is there a place where you can organize such a test?

TECH INFO: Login form have redirect to special page

     final FormPanel form = new FormPanel();
     form.setAction(GWT.getModuleBaseURL() + "checkCertificate.htm");
    

Next, checkCertificate.htm have mapping in dispatcher-servlet.xml:

      bean name="/base_dir/checkCertificate.htm" class="...CheckCertificateController">
          property name="checkSignature" ref="checkSignature"/>
      /bean
    

All necessary certificate actions are implemented in

     public class CheckCertificateController extends AbstractController {
         protected ModelAndView handleRequestInternal(HttpServletRequest request, HttpServletResponse response) throws Exception {
     ...
     }
    

which is called when user click login button.

Answer 1

We have a Servlet Filter which performs a security check each time the user needs any information from the database.

Although that's not quite the same as performing a check with each user action, it works pretty effectively for us.

Alternatively you could set up a regular repeating command which would check at specific intervals and lock the user out if their serial number was invalid.