使用spring-security + hibernate登錄錯誤
[英]error login with spring-security+hibernate
問題描述
我正在嘗試使用Spring Security + Hibernate實現一個登錄系統。
我已經定義了這些文件
春季安全
<beans:beans xmlns="http://www.springframework.org/schema/security"
xmlns:beans="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans-3.1.xsd
http://www.springframework.org/schema/security
http://www.springframework.org/schema/security/spring-security-3.1.xsd">
<beans:import resource="classpath*:dispatcher-servlet.xml"/>
<http auto-config="true" use-expressions="true">
<intercept-url pattern="/" access="PermittAll"/>
<intercept-url pattern="/login" access="permitAll"/>
<intercept-url pattern="/logout" access="permitAll"/>
<intercept-url pattern="/loginfailed" access="permitAll"/>
<intercept-url pattern="/intro" access="hasRole('ROLE_MODERATOR')"/>
<form-login login-page="/login"
login-processing-url="/j_spring_security_check"
default-target-url="/intro"
authentication-failure-url="/loginfailed" />
<logout logout-success-url="/logout" />
</http>
<beans:bean id="userDetailsService" class="com.appDial.service.UserDetailsServiceImpl"></beans:bean>
<authentication-manager>
<authentication-provider user-service-ref="userDetailsService"></authentication- provider>
</authentication-manager>
</beans:beans>
網絡XML
<!DOCTYPE web-app PUBLIC
"-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "http://java.sun.com/dtd/web-app_2_3.dtd" >
<web-app id="WebApp_1383925467813">
<display-name>Archetype Created Web Application</display-name>
<context-param>
<param-name>contextConfigLocation</param-name>
<param-value>classpath:applicationContext.xml,
/WEB-INF/spring-security.xml
</param-value>
</context-param>
<!-- Filter per spring-security -->
<filter>
<filter-name>springSecurityFilterChain</filter-name>
<filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
</filter>
<filter-mapping>
<filter-name>springSecurityFilterChain</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<listener>
<listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
</listener>
<servlet>
<servlet-name>dispatcher</servlet-name>
<servlet-class>
org.springframework.web.servlet.DispatcherServlet
</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet-mapping>
<servlet-name>dispatcher</servlet-name>
<url-pattern>/</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>dispatcher</servlet-name>
<url-pattern>/m/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>dispatcher</servlet-name>
<url-pattern>/t/*</url-pattern>
</servlet-mapping>
<welcome-file-list>
<welcome-file>index.jsp</welcome-file>
</welcome-file-list>
</web-app>
userDetailsService
package com.appDial.service;
import java.util.ArrayList;
import java.util.Collection;
import java.util.List;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.ApplicationContext;
import org.springframework.context.support.ClassPathXmlApplicationContext;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;
import com.appDial.hibernateGenerate.Pazienti;
import com.appDial.hibernateGenerate.PazientiDAO;
import com.appDial.persistence.PersistencePaziente;
@Transactional(readOnly=true)
@Service("userDetailsService")
public class UserDetailsServiceImpl implements UserDetailsService {
@Autowired
private PazientiDAO dao;
@Override
public UserDetails loadUserByUsername(String username)
throws UsernameNotFoundException {
ApplicationContext ap = new ClassPathXmlApplicationContext("applicationContext.xml");
PersistencePaziente pp = (PersistencePaziente) ap.getBean("persistencePaziente");
Pazienti pazienti= (Pazienti) pp.findByUsername(username);
if(pazienti==null){
System.out.println("non trovato!");
throw new UsernameNotFoundException("user not found");
}
System.out.println(""+pazienti.getNome()+"");
boolean enabled = true;
boolean accountNonExpired = true;
boolean credentialsNonExpired = true;
boolean accountNonLocked = true;
Integer id=2;
return new User(
pazienti.getUsername(),
pazienti.getPassword(),
enabled,
accountNonExpired,
credentialsNonExpired,
accountNonLocked,
getAuthorities(id)
);
}
public Collection<? extends GrantedAuthority> getAuthorities(Integer role) {
List<GrantedAuthority> authList = getGrantedAuthorities(getRoles(role));
return authList;
}
public List<String> getRoles(Integer role) {
List<String> roles = new ArrayList<String>();
if (role.intValue() == 1) {
roles.add("ROLE_MODERATOR");
roles.add("ROLE_ADMIN");
} else if (role.intValue() == 2) {
roles.add("ROLE_MODERATOR");
}
return roles;
}
public static List<GrantedAuthority> getGrantedAuthorities(List<String> roles) {
List<GrantedAuthority> authorities = new ArrayList<GrantedAuthority>();
for (String role : roles) {
authorities.add(new SimpleGrantedAuthority(role));
}
return authorities;
}
}
嘗試登錄時,總是出現錯誤,並且您未創建與數據庫的連接
1 個解決方案
解決方案1
0 2013-11-27 11:57:13
@Transactional(readOnly=true)
@Service("userDetailsService")
public class UserDetailsServiceImpl implements UserDetailsService {
@Autowired
private PazientiDAO dao;
@Override
public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
ApplicationContext ap = new ClassPathXmlApplicationContext("applicationContext.xml");
PersistencePaziente pp = (PersistencePaziente) ap.getBean("persistencePaziente");
Pazienti pazienti= (Pazienti) pp.findByUsername(username);
if(pazienti==null){
System.out.println("non trovato!");
throw new UsernameNotFoundException("user not found");
}
System.out.println(""+pazienti.getNome()+"");
boolean enabled = true;
boolean accountNonExpired = true;
boolean credentialsNonExpired = true;
boolean accountNonLocked = true;
Integer id=2;
return new User(
pazienti.getUsername(),
pazienti.getPassword(),
enabled,
accountNonExpired,
credentialsNonExpired,
accountNonLocked,
getAuthorities(id)
);
}
您的服務實施有誤。 切勿在代碼中構造ApplicationContext的新實例(當您開始執行此操作時,各種警報都會響起!)。 使用依賴注入獲得所需的依賴。
您的解決方案最終將使您正在創建的所有數據庫連接都停止數據庫運行,每次使用新的sessionfactory和transactionmanager時,最終您的應用程序將由於內存問題或數據庫鎖定而停止運行。 (我認為那不是您想要的嗎?)。
我期望以下內容
@Transactional(readOnly=true)
@Service("userDetailsService")
public class UserDetailsServiceImpl implements UserDetailsService {
@Autowired
private PazientiDAO dao;
@Override
public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
Pazienti pazienti= dao.findUser(username);
if(pazienti==null){
System.out.println("non trovato!");
throw new UsernameNotFoundException("user not found");
}
System.out.println(""+pazienti.getNome()+"");
boolean enabled = true;
boolean accountNonExpired = true;
boolean credentialsNonExpired = true;
boolean accountNonLocked = true;
Integer id=2;
return new User(
pazienti.getUsername(),
pazienti.getPassword(),
enabled,
accountNonExpired,
credentialsNonExpired,
accountNonLocked,
getAuthorities(id)
);
}
我認為您不是因為可以注入PazientiDAO ,而是因為您想使用它。
使用Spring Security使用Spring Hibernate和mysql創建登錄頁面時出現問題
[英]Issue creating login page with spring hibernate and mysql using spring security
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.
相關問題
帶有Hibernate和mysql登錄的Spring Security
Spring MVC Hibernate Spring Security登錄
春季安全。 登錄錯誤
Spring Security自定義登錄錯誤
Spring MVC Hibernate Spring Security錯誤
使用Spring Security使用Spring Hibernate和mysql創建登錄頁面時出現問題
Spring Security with LDAP - 登錄后出錯
Spring Security JDBC 認證登錄用戶錯誤
自定義登錄頁面的 403 錯誤 Spring 安全
使用Spring Security休眠
相關標簽