堆栈内存溢出
  繁体   English   中英

Spring Security无法找到登录URL

[英]Spring security not able to find login url

 原文  2015-10-28 05:07:22       java/ spring/ spring-mvc/ spring-security

问题描述

我有一个现有的Web应用程序。 我正在尝试将Spring Security与之集成在一起。 我在部署应用程序后无法识别spring security的登录URL,这是错误的,我看不到任何错误

org.springframework.security.web.DefaultSecurityFilterChain创建过滤器链:org.springframework.security.web.util.matcher.AnyRequestMatcher@1,[org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter@71cc932,组织。 springframework.security.web.context.SecurityContextPersistenceFilter@71d35b4,org.springframework.security.web.header.HeaderWriterFilter@71d1f86,org.springframework.security.web.csrf.CsrfFilter@71d08b7,org.springframework.security.web.authentication。 logout.LogoutFilter@71d4ca2,org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter@71ceaed,org.springframework.security.web.savedrequest.RequestCacheAwareFilter@71d4047,org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter@71cd7f9, springframework.security.web.authentication.AnonymousAuthenticationFilter@71cfc0f,org.springframework.security.web.session.SessionManagementFilter@71d2ae9,org.springframework.security.web.access .ExceptionTranslationFilter @ 71d141a,org.springframework.security.web.access.intercept.FilterSecurityInterceptor @ 71d5b32]

当我尝试登录时我得到这个

找不到文件:com.ibm.ws.webcontainer.extension.DefaultExtensionProcessor._processEDR(DefaultExtensionProcessor.java:893)上的com.ibm.ws.webcontainer.extension.DefaultExtensionProcessor.processEDR(DefaultExtensionProcessor.java:874)上的/ j_spring_security_check com.ibm.ws.webcontainer.filter.com上的.ibm.ws.webcontainer.extension.DefaultExtensionProcessor.handleRequest(DefaultExtensionProcessor.java:434)在com.ibm.ws.webcontainer.filter上的com.ibm.ws.webcontainer.filter.WebAppFilterChain.invokeTarget(WebAppFilterChain.java:125) com.ibm.ws.webcontainer.filter.WebAppFilterManager.doFilter(WebAppFilterManager.java:926)上的.WebAppFilterChain.doFilter(WebAppFilterChain.java:77)com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters(WebAppFilterManager.java :1023)位于com.ibm.ws.webcontainer.webapp.WebApp.WebApp.handleRequest(WebApp.java:3703),位于com.ibm.ws.webcontainer.webapp.WebGroup.handleRequest(WebGroup.java:304)。 com.ibm.ws.webcontainer上的ws.webcontainer.WebContainer.handleRequest(WebContainer.java:962) .com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:195)处的.WSWebContainer.handleRequest(WSWebContainer.java:1662)(com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination) (HttpInboundLink.java:452)com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewRequest(HttpInboundLink.java:511)com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.processRequest (HttpInboundLink.java:305)com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.ready(HttpInboundLink.java:276)com.ibm.ws.tcp.channel.impl.NewConnectionInitialReadCallback.sendToDiscriminators(NewConnectionInitialReadCallback .java:214)com.ibm.ws.tcp.channel.impl.NewConnectionInitialReadCallback.complete(NewConnectionInitialReadCallback.java:113)com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:165) )com.ibm.io.async.AsyncChannelFuture.f上com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217) com.ibm.io.async.ResultHandler.complete(ResultHandler.java:204)的com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:138)的ireCompletionActions(AsyncChannelFuture.java:161) .io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:775)在com.ibm.io.async.ResultHandler $ 2.run(ResultHandler.java:905)在com.ibm.ws.util.ThreadPool $ Worker.run( ThreadPool.java:1659)

配置文件 

    @Configuration
@EnableWebMvcSecurity
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {
    @Autowired
    JdbcTemplate jdbcTemp;

    @Autowired
    public void configAuthentication(AuthenticationManagerBuilder auth) throws Exception {
        System.out.println("SecurityConfig.configAuthentication() - START");
      auth.jdbcAuthentication().dataSource(jdbcTemp.getDataSource())
        .usersByUsernameQuery(
            "select id,pwd,'true' as enabled from scm_users where id=?")
        .authoritiesByUsernameQuery(
            "select id, 'default' from scm_users where id=?");
    }   

    @Override
    protected void configure(HttpSecurity http) throws Exception {

      http.authorizeRequests()
        .antMatchers("/admin/**").access("hasRole('ROLE_ADMIN')")
        .and()
          .formLogin().loginPage("/userLogin.htm").failureUrl("/userLogin.htm?error")
          .usernameParameter("id").passwordParameter("pwd")
        .and()
          .logout().logoutSuccessUrl("/userLogin.htm?logout")
        .and()
          .exceptionHandling().accessDeniedPage("/403")
        .and()
          .csrf();
    }
}

web.xml中 

 <servlet>
    <servlet-name>spring</servlet-name>
    <servlet-class>
        org.springframework.web.servlet.DispatcherServlet
    </servlet-class>
    <load-on-startup>1</load-on-startup>
</servlet>
<servlet-mapping>
    <servlet-name>spring</servlet-name>
    <url-pattern>*.htm</url-pattern>
</servlet-mapping>
    <error-page>
    <error-code>404</error-code>
    <location>/WEB-INF/pages/PageNotFound.jsp</location>
</error-page>
<listener>
    <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
</listener>

<context-param>
    <param-name>contextConfigLocation</param-name>
    <param-value>
        /WEB-INF/spring-servlet.xml
    </param-value>
</context-param>

<!-- Spring Security -->
<filter>
    <filter-name>springSecurityFilterChain</filter-name>
    <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
</filter>

<filter-mapping>
    <filter-name>springSecurityFilterChain</filter-name>
    <url-pattern>/*</url-pattern>
</filter-mapping>

在我的spring-servlet中,该文件位于web-inf文件夹中。 我没有任何应用程序上下文,因此指向spring-servlet.xml。 那是对的吗。

为spring-servlet.xml 

    <?xml  version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans"........

    <mvc:annotation-driven />
    <context:annotation-config />

    <context:component-scan base-package="org.ibm.idea.scm.*" />


    <bean class="org.springframework.web.servlet.view.ContentNegotiatingViewResolver">
        <property name="mediaTypes">
          <map>
            <entry key="html" value="text/html"/>
            <entry key="json" value="application/json"/>
          </map>
        </property>
        <property name="viewResolvers">
          <list>
            <bean class="org.springframework.web.servlet.view.UrlBasedViewResolver">
              <property name="viewClass" value="org.springframework.web.servlet.view.JstlView"/>
               <property name="prefix" value="/WEB-INF/pages/" />
               <property name="suffix" value=".jsp" />
            </bean>
          </list>
        </property>
        <property name="defaultViews">
          <list>
            <bean class="org.springframework.web.servlet.view.json.MappingJacksonJsonView">
              <property name="prefixJson" value="true"/>
            </bean>
          </list>
        </property>
    </bean>


   <bean id="portalDataSource" class="org.springframework.jndi.JndiObjectFactoryBean">
        <property name="jndiName" value="SCMDB" />
    </bean>
    <bean id="portalCRMDataSource" class="org.springframework.jndi.JndiObjectFactoryBean">
        <property name="jndiName" value="CRMDB"/>
    </bean> 

 <!-- 
    <bean id="portalDataSource" class="org.springframework.jndi.JndiObjectFactoryBean">
        <property name="jndiName" value="jndi/SCMDB" />
    </bean>

    <bean id="portalCRMDataSource" class="org.springframework.jndi.JndiObjectFactoryBean">
             <property name="jndiName" value="jndi/CRMDB"/>
     </bean> -->


    <bean id="jdbcTemp" class="org.springframework.jdbc.core.JdbcTemplate">
        <property name="dataSource" ref="portalDataSource" />
    </bean>
       <bean id="jdbcTempCRM" class="org.springframework.jdbc.core.JdbcTemplate">
          <property name="dataSource"  ref="portalCRMDataSource" />    
       </bean>
    <bean id="multipartResolver" class="org.springframework.web.multipart.commons.CommonsMultipartResolver" />  
</beans>

登录jsp表格 

 <form class="loginInput" class="col-md-4" action="<c:url value='/j_spring_security_check' />" method="post"> <div class="row"> <div class="col-lg-12"> <p> <b>Sign In</b> </p> </div> <div class="col-lg-12"> <input type="text" placeholder="User Name" name="id" class="form-control"> </div> <div class="col-lg-12"> <input type="password" placeholder="Password" name="pwd" class="form-control"> </div>

请指出错误

问候

Adeeb

3 个解决方案

解决方案1
 0  2015-10-28 06:34:07

此问题与Websphere Web容器有关。 请遵循以下指示

该信息可在其他地方获得,但是为了最大程度地减少查看此线程的任何人的痛苦,可以按以下方式解决此问题:

  1. WAS必须为6.1.0.11或更高版本。

  2. 必须在Web容器上设置一个自定义属性,以便WAS可以与决定提交响应的过滤器很好地配合,而不是将责任传递给链中的下一个过滤器。 com.ibm.ws.webcontainer.invokefilterscompatibility = true

有关错误和修复的更多信息,请参见:

http://www-01.ibm.com/support/docview.wss?uid=swg24014758

使用此处提供的指导在WebSphere管理控制台中设置此属性:

http://www-01.ibm.com/support/docview.wss?rss=180&uid=swg21284395

来源

解决方案2
 0  2015-10-28 08:23:23

一种建议是将您的loginPage("/userLogin.htm")替换为您在控制器中设置的RequestMapping

希望对您有所帮助。

编辑

尝试将其添加到您的xml配置文件中: 

<beans>
    <context:annotation-config/>
    <bean class="your.package.SecurityConfig"/>
</beans>

有关更多详细信息,请转到此处

解决方案3
 0  2018-09-08 08:43:42

替换为-> <c:url value='/j_spring_security_check' />" method="post">

与-> <c:url value='/YourAppName/j_spring_security_check' />" method="post">

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 spring 安全登录 url Spring安全自定义登录URL 使用参数 url 登录 spring security Spring Security登录页面URL参数 更改spring security中的登录服务URL spring 安全登录总是重定向到失败 url 在Spring Security中以编程方式设置login-url 登录后保持相同的URL Spring安全性 在Spring Security中登录后击中登录URL Spring Security - 在重定向到登录时保留URL参数
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM