Spring Security配置無法從MySQL驗證用戶/密碼
[英]Spring Security configuration not validating user/password from mysql
問題描述
當我登錄我的應用程序時,必須進行查詢,以驗證用戶是否存在於mysql數據庫中。 但是,它沒有完成,或者如果正在完成,我沒有任何線索。
我在spring-security.xml中使用以下配置:
<beans
xmlns="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:security="http://www.springframework.org/schema/security"
xmlns:context="http://www.springframework.org/schema/context"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans-4.0.xsd
http://www.springframework.org/schema/context
http://www.springframework.org/schema/context/spring-context-4.0.xsd
http://www.springframework.org/schema/security
http://www.springframework.org/schema/security/spring-security-3.1.xsd">
<security:http auto-config="true" use-expressions="true">
<security:intercept-url pattern="/home" access="permitAll"/>
<security:intercept-url pattern="/login" access="permitAll"/>
<security:intercept-url pattern="/restrict/resources/**" access="permitAll" />
<security:intercept-url pattern="/assets/**" access="permitAll" />
<security:intercept-url pattern="/restrict/js/**" access="permitAll" />
<security:intercept-url pattern="/**" access="hasRole('Admin')" />
<security:intercept-url pattern="/administrador.boxml" access="permitAll" />
<security:form-login login-page="/login"
default-target-url="/organizacao"
authentication-success-handler-ref="authenticationSuccessHandler"
authentication-failure-handler-ref="authenticationFailureHandler"
authentication-failure-url="/login?erro=true"/>
<security:access-denied-handler error-page="/acessonegado" />
<security:session-management invalid-session-url="/login" />
<security:form-login login-page="/administrador.boxml"
authentication-success-handler-ref="authenticationSuccessHandler"
authentication-failure-handler-ref="authenticationFailureHandler"
authentication-failure-url="/administrador.boxml?erro=true"
default-target-url="/restrict/layout.boxml"/>
<security:access-denied-handler error-page="/acessonegado.boxml" />
</security:http>
<session-management invalid-session-url="/login.boxml" />
<bean id="authenticationSuccessHandler" class="br.com.kolss.boxml.login.LoginSuccessHandler"/>
<bean id="authenticationFailureHandler" class="br.com.kolss.boxml.login.LoginFailureHandler"/>
<security:authentication-manager>
<security:authentication-provider>
<security:password-encoder hash="sha-256"/>
<security:jdbc-user-service data-source-ref="dataSource"
users-by-username-query="SELECT distinct u.email_usuario, u.senha_usuario, 'true' as enabled FROM usuario u WHERE u.ativo=1 and lower(u.email_usuario)=lower(?)"
authorities-by-username-query="SELECT distinct u.email_usuario as username, p.descricao as authorities FROM usuario u INNER JOIN perfil p ON u.id_perfil = p.id_perfil INNER JOIN escritorio_contabil e ON u.id_escritorio_contabil = e.id_escritorio_contabil WHERE u.ativo=1 and e.ativo = 1 and lower(u.email_usuario)=lower(?)"/>
</security:authentication-provider>
<security:authentication-provider>
<security:password-encoder hash="sha-256"/>
<security:jdbc-user-service data-source-ref="dataSource"
users-by-username-query="SELECT distinct a.email_administrador, a.senha_administrador, 'true' as enabled FROM administrador a WHERE a.ativo=1 and lower(a.email_administrador)=lower(?)"
authorities-by-username-query="SELECT distinct a.email_administrador as username, 'ADMINISTRADOR' as authorities FROM administrador a WHERE a.ativo=1 and lower(a.email_administrador)=lower(?)"/>
</security:authentication-provider>
</security:authentication-manager>
這是登錄調試的過程:
1)登錄
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<%@ taglib uri="http://tiles.apache.org/tags-tiles" prefix="tiles"%>
<%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c" %>
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<!-- META CONFIGURATION -->
<meta http-equiv="Content-Type" content="text/html; charset=iso- 8859-1">
<meta http-equiv="content-language" content="pt-br">
<meta http-equiv="X-UA-Compatible" content="IE=9"/>
<meta name="viewport" content="width=device-width, initial-scale=1.0" />
<meta name="robots" content="index, follow" />
<meta name="description" content="boXml é uma ferramenta desenvolvida pela Kolss especialmente para as empresas que necessitam de uma automatização em armazenamento e organização de XML." />
<meta name="keywords" content="boxml, xml, armazenamento, organização, sistema, kolss" />
<!-- // -->
<!-- OPEN GRAPH META -->
<meta property="og:title" content="Armazenamos e organizamos seus XMLs. Faça um teste grátis!"/>
<meta property="og:image" content="restrict/resources/images/boxml_og.png"/>
<meta property="og:site_name" content="boXml"/>
<meta property="og:description" content="Uma ferramenta desenvolvida especialmente para as empresas que necessitam de uma automatização em armazenamento e organização de XML."/>
<!-- // -->
<!-- WEB DESIGN & DEVELOPMENT -->
<meta name="author" content="Brício Fernandes" />
<meta name="reply-to" content="bricioweb@gmail.com" />
<!-- // -->
<!-- FAVICON -->
<link rel="shortcut icon" href="restrict/resources/images/favicon.ico" type="image/x-icon" />
<!-- // -->
<!-- TITLE -->
<title>Login | boXml - Solução em Armazenamento de XMLs</title>
<!-- // -->
<!-- CSS LIBRARY -->
<link rel="stylesheet" href="restrict/resources/css/foundation/foundation.css" />
<link rel="stylesheet" href="restrict/resources/css/icons/flaticon.css" />
<link rel="stylesheet" href="restrict/resources/css/styles/style.css" />
<link rel="stylesheet" href="restrict/resources/css/simptip.css" />
<link rel="stylesheet" href="restrict/resources/css/introloader/introLoader.css" />
<link rel="stylesheet" href="restrict/resources/css/slick.css" />
<!-- // -->
<!-- SCRIPT LIBRARY -->
<script src="restrict/js/jqueryNovoTemplate/jquery.js"></script>
<!-- // -->
<!-- MODERNIZR - FOUNDATION -->
<script src="restrict/js/foundation/modernizr.js"></script>
<!-- // -->
</head>
<body id="login">
<!-- INTRO LOADER -->
<div id="intro"></div>
<!-- // -->
<!-- SECTION "CONTACT" -->
<section id="login" class="section">
<div class="row">
<div class="small-11 small-centered medium-7 medium-centered large-5 large-centered columns">
<div class="row">
<div class="small-12 medium-12 large-12 columns text-center">
<div class="padding-logo">
<img src="restrict/resources/images/boxml_logomarca_invert.png" title="boXml - Solução em armazenamento de XMLs" width="133" height="35"/>
</div>
</div>
</div>
<form id="form-login" method="POST" action="<c:url value="/j_spring_security_check" />">
<c:if test="${param.erro}">
Falha no login.
</c:if>
<div class="row">
<div class="small-12 medium-12 large-12 columns">
<label>E-mail:
<input type="text" name="j_username" id="j_username"/>
</label>
</div>
</div>
<div class="row">
<div class="small-12 medium-12 large-12 columns">
<label>Senha:
<input type="password" name="j_password" id="j_password"/>
</label>
</div>
</div>
<div class="row" style="padding-top:11px">
<div class="small-12 small-centered medium-12 medium-centered large-12 large-centered columns">
<input id="btn" title="Clique para entrar" class="submit button btn-action btn-green btn-big" type="submit" value="Entrar" />
<a id="btn" style="margin-right:0" title="Clique para voltar ao site" class="submit button btn-action btn-gray btn-big" href="home.boxml">Cancelar </a>
</div>
</div>
</form>
<div class="row">
<div class="small-12 medium-12 large-12 columns text-center">
<div class="login-footer clearfix">
<span class="left">
<a href="recuperar.html" title="Clique para recuperar sua senha"><b>Esqueceu a senha?</b></a>
</span>
<div class="partner right">
<ul>
<li><a href="https://www.geotrust.com/" target="_blank" title="Secured by GeoTrust"><img src="restrict/resources/images/geotrust.png" width="151" height="37" /></a></li>
<li><a href="https://aws.amazon.com/pt/" target="_blank" title="Amazon Web services"><img src="restrict/resources/images/amazon.png" width="126" height="47" /></a></li>
</ul>
</div>
</div>
</div>
</div>
</div>
</div>
</section>
<!-- // -->
<!-- SCRIPT LIBRARY -->
<script src="restrict/js/foundation/jquery.js"></script>
<script src="restrict/js/foundation/foundation.min.js"></script>
<!-- // -->
<script>
// FOUNDATION LOAD
$(document).foundation();
</script>
</body>
2)直接進入我的失敗課。 為什么? 我不知道。
PS:密碼為sha256 cryp。 因此,我嘗試使用cryp的密碼:
正常:123456
帶cryp:8d969eef6ecad3c29a3a629280e686cf0c3f5d5a86aff3ca12020c923adc6c92
即使進入失敗過程。
我的數據庫行正在滿足查詢請求的要求。
我是否缺少任何配置?
Spring安全版本:3.1 Spring MVC版本:3.2
提前致謝
1 個解決方案
解決方案1
0 已采納 2015-10-22 15:29:28
我不再在Spring Security的xml配置文件中配置查詢。
我創建了一個由UserDetailsService實現的類(org.springframework.security.core.userdetails。*),在其中進行查詢,在成功的類中,我可以管理其余的過程。
String userName = "";
String autoridade = "";
SecurityContext context = SecurityContextHolder.getContext();
if (context instanceof SecurityContext) {
authentication = context.getAuthentication();
if (authentication instanceof Authentication) {
userName = (((UserDetails) authentication.getPrincipal()).getUsername());
autoridade = (((UserDetails) authentication.getPrincipal()).getAuthorities().iterator().next().getAuthority());
}
}
Spring Security - 簡單的用戶注冊(不是xml配置)
[英]Spring Security - Simple User Registration (not xml configuration)
Spring和Java Encoder中數據庫密碼和用戶登錄密碼的安全性如何?
[英]Security for DataBase password and user login password in Spring and Java Encoder How to?
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.