堆栈内存溢出
  繁体   English   中英

无法从angularjs获取用户名和密码到Spring Security

[英]Unable to get username and password from angularjs to spring security

 原文  2016-11-21 05:49:42       javascript/ java/ angularjs/ spring-mvc/ spring-security

问题描述

使用Spring Security在Angular.js上开发应用程序。 我无法将用户名和密码从UI发送到Spring Security。 获取空指针异常。 调试后发现,用户名为null。 在Google上进行了大量搜索,但无法修复。 当我单击登录按钮时,调试器将我带到userdetailserviceimpl.java类,并发现用户名为null。 在正常情况下,如果我使用Spring Security登录表单,则如果我使用错误的凭据提交表单,则用户名不会为空,但是通过UI进行的Ajax调用将为空。

SecurityConfig.java 

@Autowired
public void configAuthBuilder(AuthenticationManagerBuilder builder) throws Exception {
    builder.userDetailsService(userDetailServiceImpl);          
}

@Override
protected void configure(HttpSecurity http) throws Exception {


http
.authorizeRequests()
    .antMatchers("/app/**").permitAll()
    .antMatchers("/login.html").permitAll()
    .anyRequest().authenticated()
    .and()
    .exceptionHandling()
        .authenticationEntryPoint(unauthorisedHandler)
        .accessDeniedHandler(accessDenied)
        .and()
.formLogin()
.loginProcessingUrl("/authenticate")
    .successHandler(authSuccess)
    .usernameParameter("username")
    .passwordParameter("password")
    .permitAll()
    .and()
    .logout().logoutSuccessHandler(logoutSuccess).permitAll()
    .and()
    .csrf().disable();      

}

UserDetailServiceImpl.java 

@Service
public class UserDetailServiceImpl implements UserDetailsService {

    @Autowired
    private LoginDao loginDao;

    public UserDetails loadUserByUsername(String username)
            throws UsernameNotFoundException {

        UserInfo userInfo = loginDao.loadUserByUsername(username);
        System.out.println(userInfo.getUserName() + "" + userInfo.getRole());
        GrantedAuthority authority = new SimpleGrantedAuthority(userInfo.getRole());
        UserDetails userDetails = (UserDetails)new User(userInfo.getUserName(), userInfo.getPassword(), Arrays.asList(authority));
        return userDetails;
    }

}

login.controller.js 

var vm = this;
    vm.credentials = {};

    vm.login = function(){
        var config = {
                params: {
                 username: vm.credentials.username,
                 password: vm.credentials.password,
                }
               };
        loginService.login(config);
    };

login.service.js 

this.login = function(config){
    return ajaxService.login("../authenticate",config);
};

通用ajax服务 

this.login = function (url, dataObj) {

        var res = $http({
            url: url,
            method: 'POST',
            data: dataObj,
            headers: {
                'Content-Type': 'application/x-www-form-urlencoded',
                'X-Requested-With': 'XMLHttpRequest'
              }
        });

        res.success(function(data, status, headers, config) {

        });
        res.error(function(data, status, headers, config) {

        });
        return res;
    };

login.html 

<div ng-controller='LoginController as lc'>

<form>
    <div class="form-group"
         ng-class="{'has-error is-focused' : authenticationError}">
        <input id="login" ng-model="lc.credentials.username" type="text" class="form-control"
               required="required" placeholder="login"/>
        <span ng-show="authenticationError" class="help-block">
            Please check your credentials and try again.
        </span>
    </div>

    <div class="form-group">
        <input id="password" ng-model="lc.credentials.password" type="password" class="form-control"
               required="required" placeholder="password"/>
    </div>

    <input type="checkbox" ng-model="rememberMe"/><span> Remember me</span>

    <button ng-click="lc.login()" >Login</button>
</form>
</div>

更新堆栈跟踪 

Nov 22, 2016 12:47:16 AM org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter doFilter
SEVERE: An internal error occurred while trying to authenticate the user.
org.springframework.security.authentication.InternalAuthenticationServiceException
    at org.springframework.security.authentication.dao.DaoAuthenticationProvider.retrieveUser(DaoAuthenticationProvider.java:110)
    at org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider.authenticate(AbstractUserDetailsAuthenticationProvider.java:132)
    at org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:156)
    at org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:177)
    at org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter.attemptAuthentication(UsernamePasswordAuthenticationFilter.java:94)
    at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:211)
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
    at org.springframework.security.web.authentication.logout.LogoutFilter.doFilter(LogoutFilter.java:110)
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
    at org.springframework.security.web.header.HeaderWriterFilter.doFilterInternal(HeaderWriterFilter.java:57)
    at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
    at org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:87)
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
    at org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:50)
    at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
    at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192)
    at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:160)
    at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346)
    at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:262)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
    at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:218)
    at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
    at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:505)
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:169)
    at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
    at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:958)
    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
    at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:452)
    at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1087)
    at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:637)
    at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316)
    at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)
    at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
    at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
    at java.lang.Thread.run(Unknown Source)
Caused by: java.lang.NullPointerException
    at com.er4u.core.login.service.impl.UserDetailServiceImpl.loadUserByUsername(UserDetailServiceImpl.java:30)
    at org.springframework.security.authentication.dao.DaoAuthenticationProvider.retrieveUser(DaoAuthenticationProvider.java:102)
    ... 37 more

2 个解决方案

解决方案1
 0  2016-11-21 06:20:54

您正在使用包装器对象,而Spring只是期望对象中的usernamepassword 更改var config = { params: { username: vm.credentials.username, password: vm.credentials.password}}; var config = {username: vm.credentials.username, password: vm.credentials.password 另外,有一个教程向您展示了如何简单地准确地做到这一点:

https://spring.io/guides/tutorials/spring-security-and-angular-js/

解决方案2
 0 已采纳  2016-11-26 09:18:54

最后我通过改变解决了这个问题 

var config = {
                params: {
                 username: vm.credentials.username,
                 password: vm.credentials.password,
                }
               }; 


vm.user = "username="+vm.credentials.username+"&password="+vm.credentials.password;

感谢大家的帮助。 希望这个答案对将来有帮助。 :)

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何从JSESSIONID cookie的客户端获取Spring Security的令牌用户名? 使用用户名密码的Angularjs Rest端点 无法从Angular js的html页面中将用户名和密码传递给控制器 在HTML Spring Security中显示用户名 AngularJS和Spring MVC安全性 如何从使用密码和用户名的位获取访问令牌? AngularJS和Spring后端-在AngularJS中以user.password的身份从数据库获取密码 使用用户名和密码通过节点js,AngularJs和JWT进行身份验证 春季安全性:在jsp页面上的用户名中包含点 如何在Javascript中使用Spring Security用户名
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM