[英]Injecting UserService into SecurityConfiguration in jhipster leads to spring bean circular dependency
我正在尝试将jhipster 4应用程序配置为使用auth0进行身份验证。 最初生成项目时,我选择了JWT选项,该选项似乎可以正常工作并提供JWT支持。 我现在想做的是,通过读取它们提供的JWT令牌并在首次看到新的auth0用户名时创建一个用户,来正确处理与auth0的集成。
为此,我计划将UserService
注入jhipster提供的JWTFilter
并在首次看到用户名时创建一个新帐户,如下所示:
private UserService userService;
public JWTFilter(TokenProvider tokenProvider, UserRepository userRepository, UserService userService) {
this.tokenProvider = tokenProvider;
this.userRepository = userRepository;
this.userService = userService;
}
为此,我必须将UserService
添加到JWTConfigurer
的构造函数中, JWTConfigurer
配置JWTFilter
:
package com.proj.security.jwt;
import com.proj.repository.UserRepository;
import com.proj.service.UserService;
import org.springframework.security.config.annotation.SecurityConfigurerAdapter;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.web.DefaultSecurityFilterChain;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
public class JWTConfigurer extends SecurityConfigurerAdapter<DefaultSecurityFilterChain, HttpSecurity> {
public static final String AUTHORIZATION_HEADER = "Authorization";
public static final String AUTHORIZATION_TOKEN = "access_token";
private TokenProvider tokenProvider;
private UserRepository userRepository;
private UserService userService;
public JWTConfigurer(TokenProvider tokenProvider, UserRepository userRepository, UserService userService) {
this.tokenProvider = tokenProvider;
this.userRepository = userRepository;
this.userService = userService;
}
@Override
public void configure(HttpSecurity http) throws Exception {
JWTFilter customFilter = new JWTFilter(tokenProvider, userRepository, userService);
http.addFilterBefore(customFilter, UsernamePasswordAuthenticationFilter.class);
}
}
最后,必须将其注入SecurityConfiguration
的构造函数中
public SecurityConfiguration(AuthenticationManagerBuilder authenticationManagerBuilder, UserDetailsService userDetailsService,
TokenProvider tokenProvider, CorsFilter corsFilter, UserRepository userRepository, UserService userService) {
this.authenticationManagerBuilder = authenticationManagerBuilder;
this.userDetailsService = userDetailsService;
this.tokenProvider = tokenProvider;
this.corsFilter = corsFilter;
this.userRepository = userRepository;
this.userService = userService;
}
并添加到JWTConfigurer
bean
private JWTConfigurer securityConfigurerAdapter() {
return new JWTConfigurer(tokenProvider, userRepository, userService);
}
但是,当我使用maven启动应用程序时,出现以下错误:
2017-03-13 22:41:00.816 WARN 45420 --- [ restartedMain] o.s.boot.SpringApplication : Error handling failed (Error creating bean with name 'delegatingApplicationListener' defined in class path resource [org/springframework/security/config/annotation/web/configuration/WebSecurityConfiguration.class]: BeanPostProcessor before instantiation of bean failed; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'org.springframework.cache.annotation.ProxyCachingConfiguration': Initialization of bean failed; nested exception is org.springframework.beans.factory.NoSuchBeanDefinitionException: No bean named 'org.springframework.context.annotation.ConfigurationClassPostProcessor.importRegistry' available)
2017-03-13 22:41:00.823 ERROR 45420 --- [ restartedMain] o.s.b.d.LoggingFailureAnalysisReporter :
***************************
APPLICATION FAILED TO START
***************************
Description:
The dependencies of some of the beans in the application context form a cycle:
┌─────┐
| securityConfiguration defined in file [/Users/user/work/proj/target/classes/com/proj/config/SecurityConfiguration.class]
↑ ↓
| userService defined in file [/Users/user/work/proj/target/classes/com/proj/service/UserService.class]
└─────┘
UserService
不会注入SecurityConfiguration
,因此我不确定如何解决此问题。 是否有其他方法可以解决此问题?
最后,我通过将SecurityConfiguration
类的构造函数和setter注入混合来解决了这个问题,如下所示:
@Configuration
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true, securedEnabled = true)
public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
private final AuthenticationManagerBuilder authenticationManagerBuilder;
private final UserDetailsService userDetailsService;
private UserRepository userRepository;
private final TokenProvider tokenProvider;
private final CorsFilter corsFilter;
private UserService userService;
public SecurityConfiguration(AuthenticationManagerBuilder authenticationManagerBuilder, UserDetailsService userDetailsService,
TokenProvider tokenProvider, CorsFilter corsFilter, UserRepository userRepository) {
this.authenticationManagerBuilder = authenticationManagerBuilder;
this.userDetailsService = userDetailsService;
this.tokenProvider = tokenProvider;
this.corsFilter = corsFilter;
this.userRepository = userRepository;
}
@Autowired
public void setUserService(UserService userService) {
this.userService = userService;
}
}
完成此操作后,我会看到使用正确的参数调用了构造函数,然后构造了UserService
,然后将其注入到SecurityConfiguration
的设置器中,如我所愿。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.