Thymeleaf spring 安全方言根本不起作用
[英]Thymeleaf spring security dialect doesn't work at all
问题描述
我想使用 spring 安全方言,但是当我使用它的标签时,它根本不起作用。 它显示 sec:authorize 内容,不管它是否经过身份验证。
这是pom:
<dependency>
<groupId>org.springframework.security</groupId>
<artifactId>spring-security-core</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.security</groupId>
<artifactId>spring-security-web</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.security</groupId>
<artifactId>spring-security-config</artifactId>
</dependency>
<dependency>
<groupId>org.thymeleaf</groupId>
<artifactId>thymeleaf-spring5</artifactId>
</dependency>
<dependency>
<groupId>org.thymeleaf.extras</groupId>
<artifactId>thymeleaf-extras-springsecurity4</artifactId>
<version>2.1.2.RELEASE</version>
</dependency>
这是我的页面之一:
<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml"
xmlns:th="http://www.thymeleaf.org"
xmlns:sec="http://www.thymeleaf.org/thymeleaf-extras-springsecurity4">
<head>
<meta charset="utf-8"/>
<div th:replace="fragments/header :: header-css"></div>
</head>
<body>
<div th:replace="fragments/header :: header"/>
<div class="container">
<header>
<h1 align="center">
Main Page
<div class="logout" sec:authorize="hasAnyAuthority('ADMIN')">
<span id="currentUserLogin" sec:authentication="name" >
user temp
</span>
<a href="/logout">
<i class="icon-off"></i>
</a>
</div>
</h1>
</header>
</div>
<div th:replace="fragments/footer :: footer"/>
<script src="/resources/jquery-1.8.1.min.js"></script>
</body>
</html>
无论如何,它总是显示带有“用户临时”文本的注销。 谁能帮我理解为什么会这样? 我正在使用 cairo-sr7 进行依赖管理
<dependencyManagement>
<dependencies>
<dependency>
<groupId>io.spring.platform</groupId>
<artifactId>platform-bom</artifactId>
<version>Cairo-SR7</version>
<type>pom</type>
<scope>import</scope>
</dependency>
</dependencies>
</dependencyManagement>
我想我需要通过模板引擎注册方言,但我该怎么做? 这是我的 webMvcConfig
@Configuration
@EnableWebMvc
@ComponentScan(basePackages = {"com.rjproject"})
public class WebMvcConfig implements WebMvcConfigurer {
@Autowired
private ApplicationContext applicationContext;
@Bean
public SpringResourceTemplateResolver templateResolver() {
SpringResourceTemplateResolver templateResolver = new SpringResourceTemplateResolver();
templateResolver.setApplicationContext(applicationContext);
templateResolver.setPrefix("/WEB-INF/templates/");
templateResolver.setSuffix(".html");
templateResolver.setTemplateMode(TemplateMode.HTML);
templateResolver.setCacheable(true);
return templateResolver;
}
@Bean
public SpringTemplateEngine templateEngine() {
SpringTemplateEngine templateEngine = new SpringTemplateEngine();
templateEngine.setTemplateResolver(templateResolver());
templateEngine.setEnableSpringELCompiler(true);
return templateEngine;
}
@Bean
public ViewResolver viewResolver() {
ThymeleafViewResolver viewResolver = new ThymeleafViewResolver();
viewResolver.setTemplateEngine(templateEngine());
return viewResolver;
}
@Override
public void addResourceHandlers(final ResourceHandlerRegistry registry) {
registry.addResourceHandler("/resources/**").addResourceLocations("/resources/");
}
}
2 个解决方案
解决方案1
3 已采纳 2019-04-24 05:06:51
我只需要这一行:
springTemplateEngine.addDialect(new SpringSecurityDialect());
在 thymeleaf 模板引擎配置中。 因为方言应该手动注册。
解决方案2
2 2019-04-23 13:52:10
我假设您使用的是 Spring Boot 2.1.X
然后你必须使用版本5:
<dependency>
<groupId>org.thymeleaf.extras</groupId>
<artifactId>thymeleaf-extras-springsecurity5</artifactId>
</dependency>
Spring安全和Thymeleaf不起作用
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.