}
protected UserToken getAuthentication() {
Authentication auth = SecurityContextHolder.getContext().getAuthentication();
if (null == auth) throw new AuthenticationException();
UserToken user = (UserToken) auth.getPrincipal();
if (null == user.getId()) throw new AuthenticationException();
return user;
}