[英]How can I dynamically authenticate a user against the db or ldap with spring security?
我将身份验证配置为可同时与db和ldap一起使用:
auth.ldapAuthentication()
.groupSearchBase(groupSearchBase)
.groupSearchFilter(groupFilter)
.userSearchFilter(userFilter).userSearchBase(userSearchBase)
.contextSource(contextSource())
.and()
.jdbcAuthentication().dataSource(dataSource).usersByUsernameQuery(
"SELECT lower(username), password, active from USER_BTABLE where lower(username)=lower(?) and LDAPAUTH=0"
).authoritiesByUsernameQuery("select lower(username), 'ROLE_USER' from USER_ATABLE where lower(username)=lower(?)");
问题在于,如果用户还以另一个密码(从第6个身份验证请求开始)存在于已配置的ldap中,则会出现以下异常:
org.springframework.ldap.InvalidAttributeValueException: [LDAP: error code 19 - Exceed password retry limit. Please try later.];
如果用户设置了db auth标志,我将检查登录过滤器,是否也可以在此动态配置AuthenticationManagerBuilder ?
我最终做了一个307重定向,从db auth服务器实例到doFilter方法中的ldap auth服务器实例:
httpResponse.setStatus(TEMPORARY_REDIRECT);
httpResponse.setHeader("Location", req.getScheme() + "://"redirectLocation);
Spring 安全 - 首先验证数据库中的用户,然后再针对 AD 进行身份验证
[英]Spring Security - Verify user in DB first and then authenticate against AD
如何使用spring Security通过基于邮件和uid的LDAP对用户进行身份验证?
[英]How to authenticate a user from LDAP based on mail and by uid with spring Security?
如何使用DaoAuthenticationProvider以编程方式使用Spring Security对用户进行身份验证
[英]How can I programmatically authenticate user with Spring Security using DaoAuthenticationProvider
使用Spring Security 3对仅具有用户名的用户进行REST身份验证
[英]Using Spring security 3 to authenticate against REST a user only with username
配置Spring Security以针对LDAP进行身份验证而无需匿名和绑定DN
[英]Configuring Spring Security to Authenticate against LDAP without anonymous and without bind DN
如何通过Android应用针对Spring Security进行身份验证?
[英]How to authenticate against Spring Security from Android app?
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.