org.springframework.beans.factory.NoSuchBeanDefinitionException：未定义名为“ springSecurityFilterChain”的bean-基于Java的配置

Question

尝试解决org.springframework.beans.factory.NoSuchBeanDefinitionException: No bean named 'springSecurityFilterChain' is defined在基于Java的配置中org.springframework.beans.factory.NoSuchBeanDefinitionException: No bean named 'springSecurityFilterChain' is defined 。

web.xml

<?xml version="1.0" encoding="UTF-8"?>

<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
         xmlns="http://java.sun.com/xml/ns/javaee"
         xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
         id="WebApp_ID" version="3.0">

    <!-- The definition of the Root Spring Container shared by all Servlets and Filters -->
    <context-param>
        <param-name>contextConfigLocation</param-name>
        <param-value>/WEB-INF/spring/root-context.xml</param-value>
    </context-param>
    <!-- Creates the Spring Container shared by all Servlets and Filters -->
    <listener>
        <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
    </listener>

    <servlet>
        <servlet-name>appServlet</servlet-name>
        <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
        <init-param>
            <param-name>contextClass</param-name>
            <param-value>org.springframework.web.context.support.AnnotationConfigWebApplicationContext</param-value>
        </init-param>
        <init-param>
            <param-name>contextConfigLocation</param-name>
            <param-value>com.examples.config.WebAppConfig</param-value>
        </init-param>
        <load-on-startup>1</load-on-startup>
    </servlet>
    <servlet-mapping>
        <servlet-name>appServlet</servlet-name>
        <url-pattern>/</url-pattern>
    </servlet-mapping>

    <!-- Spring Security -->
    <filter>
        <filter-name>springSecurityFilterChain</filter-name>
        <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
    </filter>
    <filter-mapping>
        <filter-name>springSecurityFilterChain</filter-name>
        <url-pattern>/*</url-pattern>
    </filter-mapping>

    <error-page>
        <error-code>404</error-code>
        <location>/WEB-INF/views/error/404.jsp</location>
    </error-page>


</web-app>

基于Java的WebAppCinfig：

@EnableWebMvc
@Configuration
@Import(value = SecurityConfig.class)
@ComponentScan(basePackages = {"com.examples"})
@ImportResource({ "classpath:spring-security-config.xml" })
public class WebAppConfig extends WebMvcConfigurerAdapter {

    public WebAppConfig() {
        super();
    }

    @Override
    public void addViewControllers(final ViewControllerRegistry registry) {
        super.addViewControllers(registry);

        registry.addViewController("/anonymous.html");

        registry.addViewController("/login.html");
        registry.addViewController("/homepage.html");
    }

    @Bean
    public ViewResolver viewResolver() {
        final InternalResourceViewResolver bean = new InternalResourceViewResolver();

        bean.setViewClass(JstlView.class);
        bean.setPrefix("/WEB-INF/views/");
        bean.setSuffix(".jsp");

        return bean;
    }
}

用于安全性的SecurityConfig.java文件：

@Configuration
@ImportResource({ "classpath:spring-security-config.xml" })
public class SecurityConfig {

    public SecurityConfig() {
        super();
    }

}

最后是WebAppConfig.java类：

<?xml version="1.0" encoding="UTF-8"?>
<beans:beans xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
             xmlns:beans="http://www.springframework.org/schema/beans"
             xmlns="http://www.springframework.org/schema/security"
             xsi:schemaLocation="
        http://www.springframework.org/schema/beans
        http://www.springframework.org/schema/beans/spring-beans.xsd
        http://www.springframework.org/schema/security
        http://www.springframework.org/schema/security/spring-security.xsd">

    <http auto-config="true">
        <intercept-url pattern="/anonymous*" access="isAnonymous()"/>
        <intercept-url pattern="/login*" access="permitAll"/>
        <intercept-url pattern="/**" access="isAuthenticated()"/>

        <form-login login-page='/login.html' login-processing-url="/perform_login"
                    default-target-url="/homepage.html" authentication-failure-url="/login.html?error=true"
                    always-use-default-target="true"/>

        <logout logout-url="/perform_logout" delete-cookies="JSESSIONID"
                success-handler-ref="customLogoutSuccessHandler"/>

    </http>

    <beans:bean name="customLogoutSuccessHandler"
                class="com.examples.config.CustomLogoutSuccessHandler"/>

    <authentication-manager>
        <authentication-provider>
            <user-service>
                <user name="user1" password="pass1" authorities="ROLE_USER"/>
                <user name="user2" password="pass2" authorities="ROLE_USER"/>
            </user-service>
        </authentication-provider>
    </authentication-manager>
</beans:beans>

现在，我得到org.springframework.beans.factory.NoSuchBeanDefinitionException: No bean named 'springSecurityFilterChain' is defined在我正在研究的Java基础Spring Security项目中org.springframework.beans.factory.NoSuchBeanDefinitionException: No bean named 'springSecurityFilterChain' is defined 。 事情在注释配置上运行良好，并且可以很好地进行测试。 由于某些原因，Spring在尝试完成Spring Security Form Login示例时会抛出这样的错误。

另外，在spring-security-config.xml中，尝试将<http use-expressions="true">更改为<http auto-config="true">但仍然无法解决没有名为'springSecurityFilterChain' Bean的异常。

在这方面的任何帮助将不胜感激。 谢谢，

Answer 1

Spring容器正在尝试在应用程序上下文而不是Web应用程序上下文中查找springSecurityFilterChain bean。 将spring安全配置更改为包含在根上下文中。

Answer 2

请提供最少的弹簧安全性配置

http://www.springframework.org/schema/beans/spring-beans-3.0.xsd http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-安全3.0.3xsd “>

<http auto-config='true'>
    <intercept-url pattern="/**" access="ROLE_USER" />
</http>