堆棧內存溢出
  簡體   English   中英

Grails:Spring Security Core自定義身份驗證getUserByUserName返回空對象

[英]Grails: Spring Security Core Custom authentication getUserByUserName return null object

 原文  2015-10-07 13:18:55       grails/ spring-security/ authorization

問題描述

我正在使用Grails 2.4.4和Spring Security Core插件編寫自定義授權服務,並且在創建下面的user對象時遇到了麻煩。 它始終為null,但是傳遞給服務的userName和密碼是有效且正確的字符串。 (最終,我將用自定義服務替換身份驗證,但我想證明自己可以調用方法來完成該任務。)

有人知道我在做什么錯嗎?

Config.groovy的設置允許我正確調用此提供程序。 

grails.plugin.springsecurity.providerNames = ['CustomLDAPAuthProvider','daoAuthenticationProvider']

resources.groovy中的必要文​​件也已正確設置。 

beans = {   
    CustomLDAPAuthProvider(com.mathworks.spikeLDAP.CustomLDAPAuthService)
}

這是無效的服務代碼... 

package com.mathworks.spikeLDAP

import grails.gsp.PageRenderer;
import grails.transaction.Transactional

import org.springframework.beans.factory.annotation.Autowired
import org.springframework.security.authentication.AuthenticationProvider
import org.springframework.security.authentication.BadCredentialsException
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken
import org.springframework.security.core.Authentication
import org.springframework.security.core.AuthenticationException
import org.springframework.security.core.GrantedAuthority
import org.springframework.security.core.authority.SimpleGrantedAuthority
import org.springframework.security.core.userdetails.UsernameNotFoundException
import org.springframework.stereotype.Component
import org.springframework.security.core.userdetails.User

@Transactional
class CustomLDAPAuthService implements AuthenticationProvider {

    def springSecurityService       
    PageRenderer groovyPageRenderer    

    @Override
    public Authentication authenticate(Authentication arg0)
            throws AuthenticationException {

        if (arg0) {
            println ("arg0 is not null")
        } else {
            println ("arg0 is null")
        }

        def userName = (arg0 as UsernamePasswordAuthenticationToken).getPrincipal()
        println ("username="+userName)
        def password = (arg0 as UsernamePasswordAuthenticationToken).getCredentials()
        println ("password="+password)
        User user = springSecurityService.getUserByUserName(userName)

        def providedPassword = springSecurityService.encodePassword(password, user)
        def realPassword = springSecurityService.getUserPassword(user)

        if(!providedPassword.equals(realPassword)){
            throw new BadCredentialsException("Bad login credentials!")
        }

        def authorities = springSecurityService.getUserAuthorities(user)
        return new UsernamePasswordAuthenticationToken(user, arg0.credentials, authorities)

    }

    @Override
    public boolean supports(Class<?> arg0) {

        return true;
    }

}

1 個解決方案

解決方案1
 0  2015-10-07 13:37:27

您正在定義一個依賴於另一個bean的新bean,看起來應該像以下文檔中提到的代碼那樣完成 

beans = {
    myBean(MyBeanImpl) {
        someProperty = 42
        otherProperty = "blue"
        bookService = ref("bookService")
    }
}

http://grails.github.io/grails-doc/latest/guide/spring.html#theUnderpinningsOfGrails

暫無
暫無

聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.

相關問題 grails中的spring-security-core自定義身份驗證 Grails Spring安全身份驗證提供程序和自定義過濾器 Grails Spring安全核心 Grails Spring安全核心允許通過URL進行身份驗證 通過Grails進行Android應用身份驗證spring-security-core 使用spring-security-core-ldap插件在grails中實現LDAP身份驗證? 在grails的spring-security-core插件中禁用用戶身份驗證 Grails Spring Security Core插件:控制器不需要身份驗證 Grails 3 Spring Security 預認證 Grails spring security 3現場認證
相關標簽
 
粵ICP備18138465號  © 2020-2024 STACKOOM.COM