修复没有名为' springSecurityFilterChain'被定义为

时间:2014-03-31 05:25:58

标签: spring spring-mvc spring-security

我遇到了这个问题。 Spring security 3.1.3.RELEASEE。这是一个简单的基于Spring表单的登录安全性。我得到一个例外没有名为'springSecurityFilterChain'在服务器启动时定义。

WEB.XML -

    <!-- The definition of the Root Spring Container shared by all Servlets and Filters -->
    <context-param>
        <param-name>contextConfigLocation</param-name>
        <param-value>/WEB-INF/spring/root-context.xml</param-value>
    </context-param>

    <!-- Creates the Spring Container shared by all Servlets and Filters -->
    <listener>
        <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
    </listener>

    <!-- Processes application requests -->
    <servlet>
        <servlet-name>appServlet</servlet-name>
        <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
        <init-param>
            <param-name>contextConfigLocation</param-name>
            <param-value>
                /WEB-INF/spring/appServlet/servlet-context.xml, 
                /WEB-INF/spring/appServlet/login-security.xml
            </param-value>
        </init-param>
        <load-on-startup>1</load-on-startup>
    </servlet>

    <servlet-mapping>
        <servlet-name>appServlet</servlet-name>
        <url-pattern>/</url-pattern>
    </servlet-mapping>

    <!-- Spring Security -->
    <filter>
        <filter-name>springSecurityFilterChain</filter-name>
        <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
    </filter>

    <filter-mapping>
        <filter-name>springSecurityFilterChain</filter-name>
        <url-pattern>/*</url-pattern>
    </filter-mapping>

登录 - SECURITY.XML - 

<security:http auto-config="true">
        <security:intercept-url pattern="/welcome*" access="ROLE_USER" />
        <security:form-login login-page="/login" default-target-url="/welcome"
            authentication-failure-url="/loginfailed" />
        <security:logout logout-success-url="/logout" />
    </security:http>

    <security:authentication-manager>
        <security:authentication-provider>
            <security:user-service>
                <security:user name="mkyong" password="123456" authorities="ROLE_USER" />
            </security:user-service>
        </security:authentication-provider>
    </security:authentication-manager>

I do not get any warnings either. Can somebody please have a look ?

1 个答案:

答案 0 :(得分:2)

DelegatingFilterProxy只能访问所谓的根应用程序上下文。哪个是ContextLoaderListener加载的文件。

因此,不要让DispatcherServlet加载/WEB-INF/spring/appServlet/login-security.xml,而是将其移至ContextLoaderListener的配置。

<context-param>
    <param-name>contextConfigLocation</param-name>
    <param-value>/WEB-INF/spring/root-context.xml,/WEB-INF/spring/appServlet/login-security.xml</param-value>
</context-param>
相关问题
最新问题