带有弹簧安全过滤器的weblogic安全领域

时间:2012-08-21 06:48:49

标签: spring security weblogic

我正在使用spring security 3.1.1进行身份验证。应用程序部署在weblogic服务器中,并启用了安全领域来访问数据源。我可以给servlet     <run-as>     <role-name>testrole</role-name>     </run-as>

我如何为弹簧安全过滤器做同样的事情。我从过滤器访问数据源时收到此错误

:用户“”无权在资源“jdbc / DataSource”上执行“reserve”操作

securityContext.xml 

<context:annotation-config/>
<sec:http use-expressions="true" entry-point-ref="loginUrlAuthenticationEntryPoint" >
<sec:intercept-url pattern="/**" access="permitAll"/>
<sec:custom-filter position="LOGOUT_FILTER" ref="LogoutFilter" />
<sec:custom-filter position="BASIC_AUTH_FILTER" ref="AuthenticationFilter"/>
</sec:http>
<bean id="LogoutFilter" class="com.xxx.LogoutFilter">
<constructor-arg>
<bean class="com.xxx.LogoutSuccessHandler"></bean>
</constructor-arg>
<constructor-arg>
<list>
<bean class="com.xxx.LogoutHandler"></bean>
</list>
</constructor-arg>
</bean>

<bean id="AuthenticationFilter" class="com.xxx.AuthenticationFilter" >
<constructor-arg type="java.lang.String">
<value>/login.do</value>
</constructor-arg>
<property name="authenticationManager" ref="authenticationManager" />
<property name="authenticationSuccessHandler" ref="successHandler" />
<property name="authenticationFailureHandler" ref="failureHandler" />
</bean>

<bean id="loginUrlAuthenticationEntryPoint"
class="org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint">
<property name="loginFormUrl" value="/common/dologin.jsp" />
</bean>

<bean id="successHandler" class="com.xxx.AuthSuccessHandler"/>
<bean id="failureHandler" class="com.xxx.AuthFailureHandler"/>

<sec:authentication-manager alias="authenticationManager">
<sec:authentication-provider ref="jaasAuthenticationProvider" />
</sec:authentication-manager>


<bean id="jaasAuthenticationProvider"
class="com.xxx.JaasAuthenticationProvider">

<property name="callbackHandlers">
<list>
<bean class="com.xxx.security.callback.SecurityInfoProvider">
</bean>
</list>
</property>
<property name="authorityGranters">
<list>
<bean class="com.xxx.security.action.RoleUserAuthorityGranter" />
</list>
</property>
</bean>

</beans>

1 个答案:

答案 0 :(得分:0)

您可以考虑采用以下解决方案。

    <bean id="securedJndiTemplate" class="org.springframework.jndi.JndiTemplate">
         <property name="environment">
             <props>
                 <prop key="java.naming.provider.url">t3://myServerA:8001,myServerB:8002</prop>
                 <prop key="java.naming.factory.initial">weblogic.jndi.WLInitialContextFactory</prop>
                 <prop key="java.naming.security.principal">weblogic</prop>
                 <prop key="java.naming.security.credentials">weblogic</prop>
             </props>
         </property>
    </bean>

    <bean id="targetDatasource" class="org.springframework.jndi.JndiObjectFactoryBean">
         <property name="jndiTemplate">
              <ref local="securedJndiTemplate"/>
         </property>
         <property name="jndiName">
              <value>myWeblogicJNDI</value>
         </property>
    </bean>

在你的java代码中尝试查找targetDatasource。

我希望这能解决你的问题。

相关问题
最新问题