stackoom
  简体   繁体   中英

Spring Security Login issue

 原文  2011-11-10 17:13:43       java/ spring-mvc/ spring-security

Question

I am new to Spring Security and have configured Spring Security in my Spring MVC application.

After submission of login page, I am getting the following error

The requested resource (/j_spring_security_check) is not available.

I am not able to understand this behaviour.

Please help.

spring-security.xml 

<security:http auto-config="true" use-expressions="true" access-denied-page="/appln/denied">
    <security:intercept-url pattern="/appln/login" access="permitAll" />
    <security:intercept-url pattern="/appln/index" access="hasRole('ROLE_ADMIN')" />
    <security:intercept-url pattern="/appln/run" access="hasRole('ROLE_ADMIN')" />
    <security:intercept-url pattern="/appln/common" access="hasRole('ROLE_USER')" />

    <security:form-login login-page="/appln/login"
                         authentication-failure-url="/appln/login?error=true"
                         default-target-url="/appln/run"
                         authentication-success-handler-ref="AuthHandlr" />

    <security:logout invalidate-session="true"
                     logout-success-url="/appln/login" 
                     delete-cookies="JSESSIONID" />
</security:http>

Web.xml 

<filter>
    <filter-name>springSecurityFilterChain</filter-name>
    <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
</filter>

<filter-mapping>
    <filter-name>springSecurityFilterChain</filter-name>
    <url-pattern>/*</url-pattern>
</filter-mapping>

<servlet>
    <servlet-name>servlet</servlet-name>
    <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
    <load-on-startup>1</load-on-startup>
</servlet>

<listener>
    <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
</listener>

2 answers

solution1
 1 ACCPTED  2011-11-11 17:26:30

Solved the issue.

In my loginpage.jsp , the action attribute was defined as

action=../../j_spring_security_check

I was playing with the above and changed it to

action = /j_spring_security_check

and it worked without any issues.

Although the issue is solved , can anybody please elaborate on why did the change in the path work.

solution2
 0  2014-01-08 12:52:57

The form action can be 'j_spring_security_check' or '/j_spring_security_check'.

This is a default in Spring-Security can not be changed.

Similarly the form fields have to be 'j_username' and 'j_password'

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Spring Security login issue - Spring Security + Flex + BlazeDS Login Issue Issue creating login page with spring hibernate and mysql using spring security Spring Security form login Spring Security Servlet Login Spring security custom login Spring Security Login form Spring security login and logout Spring security Login implementation spring security manual login
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM