堆栈内存溢出
  简体   繁体   English

Spring 安全查询无效的列索引异常但正在处理 Oracle

[英]Spring Security query Invalid column index exception but working on Oracle

 原文  2020-08-11 23:48:00       java/ oracle/ jdbc/ spring-jdbc

问题描述

I am using spring security 4, it appears that the query that I typed doesn't work even though it works properly in PL/SQL.我正在使用 spring 安全 4,看起来我输入的查询不起作用,即使它在 PL/SQL 中正常工作。

I want to access to ROLETYPE table.我想访问ROLETYPE表。 The tables are linked with primary & foreign keys like: UTILISATEURS have POSTES have ROLES have RHNOM (which is role type LIB1 )这些表与主键和外键链接,例如: UTILISATEURSPOSTESROLESRHNOM (这是角色类型LIB1

Here's the query:这是查询:

 authorities-by-username-query="select LIB1 from RHNOM rh, UTILISATEURS u, POSTES p, ROLES r 
            where u.IDPOSTE = p.ID_POSTE and p.ID_ROLE = r.ID_ROLE and r.ID_TYP_ROLE = rh.IDNOM and u.LOGIN  = ?" />

error:错误:

  Caused by: org.springframework.jdbc.InvalidResultSetAccessException: PreparedStatementCallback; invalid ResultSet access for SQL [select LIB1 from RHNOM rh, UTILISATEURS u, POSTES p, ROLES r where u.IDPOSTE = p.ID_POSTE and p.ID_ROLE = r.ID_ROLE and r.ID_TYP_ROLE = rh.IDNOM and u.LOGIN = ?]; nested exception is java.sql.SQLException: Index de colonne non valide
    at org.springframework.jdbc.support.SQLErrorCodeSQLExceptionTranslator.doTranslate(SQLErrorCodeSQLExceptionTranslator.java:235)
    at org.springframework.jdbc.support.AbstractFallbackSQLExceptionTranslator.translate(AbstractFallbackSQLExceptionTranslator.java:73)
    at org.springframework.jdbc.core.JdbcTemplate.execute(JdbcTemplate.java:660)
    at org.springframework.jdbc.core.JdbcTemplate.query(JdbcTemplate.java:695)
    at org.springframework.jdbc.core.JdbcTemplate.query(JdbcTemplate.java:727)
    at org.springframework.jdbc.core.JdbcTemplate.query(JdbcTemplate.java:737)
    at org.springframework.jdbc.core.JdbcTemplate.query(JdbcTemplate.java:787)
    at org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl.loadUserAuthorities(JdbcDaoImpl.java:236)
    at org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl.loadUserByUsername(JdbcDaoImpl.java:188)
    at org.springframework.security.authentication.dao.DaoAuthenticationProvider.retrieveUser(DaoAuthenticationProvider.java:114)
    ... 34 more
Caused by: java.sql.SQLException: Index de colonne non valide
    at oracle.jdbc.driver.OracleResultSetImpl.getString(OracleResultSetImpl.java:1277)
    at org.apache.commons.dbcp.DelegatingResultSet.getString(DelegatingResultSet.java:213)
    at org.apache.commons.dbcp.DelegatingResultSet.getString(DelegatingResultSet.java:213)
    at org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl$2.mapRow(JdbcDaoImpl.java:240)
    at org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl$2.mapRow(JdbcDaoImpl.java:237)
    at org.springframework.jdbc.core.RowMapperResultSetExtractor.extractData(RowMapperResultSetExtractor.java:93)
    at org.springframework.jdbc.core.RowMapperResultSetExtractor.extractData(RowMapperResultSetExtractor.java:60)
    at org.springframework.jdbc.core.JdbcTemplate$1.doInPreparedStatement(JdbcTemplate.java:708)
    at org.springframework.jdbc.core.JdbcTemplate.execute(JdbcTemplate.java:644)
    ... 41 more

1 个解决方案

解决方案1
 0 已采纳  2020-08-12 05:50:09

You need to match all the columns that Spring Security expects, which for authorities-by-username-query is username, authority , see <jdbc-user-service> and the implementation of retrieval:您需要匹配 Spring Security 期望的所有列,对于authorities-by-username-queryusername, authority ,请参阅<jdbc-user-service>和检索的实现:

 protected List<GrantedAuthority> loadUserAuthorities(String username) { return getJdbcTemplate().query(this.authoritiesByUsernameQuery, new String[] { username }, new RowMapper<GrantedAuthority>() { @Override public GrantedAuthority mapRow(ResultSet rs, int rowNum) throws SQLException { String roleName = JdbcDaoImpl.this.rolePrefix + rs.getString(2); return new SimpleGrantedAuthority(roleName); } }); }

From JdbcDaoImpl in Spring Security 4.2.18 .来自Spring Security 4.2.18 中的JdbcDaoImpl

As you can see you don't actually need the first column to be username (as it isn't retrieved), but the role (authority) must be the second column, as it is retrieved by index.如您所见,您实际上不需要第一列是用户名(因为它没有被检索),但角色(权限)必须是第二列,因为它是通过索引检索的。

In short, you need to change your query to something like:简而言之,您需要将查询更改为:

select u.LOGIN, LIB1 from ...

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Oracle + Spring安全认证:SQLException:无效的列索引 - Oracle+Spring Security Authentication: SQLException: Invalid column index mybatis jdbc select查询不起作用引发无效的列索引 - mybatis jdbc select query is not working throws Invalid column index 为什么 Hibernate 抛出无效列异常? 我的查询在 Oracle 中运行良好,但在 Java 代码中抛出异常 - Why is Hibernate throwing an invalid column exception? My query runs well in Oracle, but throws an exception in Java code 无效的列索引错误oracle db java - Invalid column index error oracle db java 如何解决无效的列索引异常? - How to resolve the Invalid Column Index Exception? Spring JDBCTemplate 给出 InvalidResultSetAccessException 列索引无效 - Spring JDBCTemplate gives InvalidResultSetAccessException Invalid column index 简单计数查询中的Oracle无效列 - Oracle Invalid Column on simple count query 无效的列名异常 - 带有别名的 JdbcPagingItemReader 查询 - Invalid column name exception - JdbcPagingItemReader query with alias SQL - 17003 查询的列索引无效 - SQL - 17003 Invalid column index fo the Query 自定义异常在使用 spring 引导和 spring 安全性的过滤器中不起作用 - Custom exception is not working in filter using spring boot and spring security
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM