Spring安全中的表单登录不起作用

时间:2014-09-09 09:44:37

标签: spring-security

我在登录表单中遇到了Spring Security的问题:即使我给他们提供路径,他们也找不到URL登录

<form-login login-page="/login"  default-target-url="/index"  />

当我执行浏览器时,会显示:\ :

  

Cette页面Webprésenteuneboucle de redirection。

上述英文翻译以协助调试:

This web page has a redirect loop.

这是控制器:

@Controller
public class LoginController{

            @RequestMapping("/login")
            public String doLogin() {
                return "login";
            }
}

这是spring-security.xml 

<beans:beans xmlns="http://www.springframework.org/schema/security"
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
    xmlns:context="http://www.springframework.org/schema/context"
    xmlns:tx="http://www.springframework.org/schema/tx" xmlns:p="http://www.springframework.org/schema/p"
    xmlns:beans="http://www.springframework.org/schema/beans" 
    xsi:schemaLocation="http://www.springframework.org/schema/beans
                        http://www.springframework.org/schema/beans/spring-beans-3.1.xsd
                        http://www.springframework.org/schema/security
                        http://www.springframework.org/schema/security/spring-security-3.1.xsd
                        http://www.springframework.org/schema/tx
                        http://www.springframework.org/schema/context
                        http://www.springframework.org/schema/context/spring-context-3.1.xsd 
                        http://www.springframework.org/schema/tx/spring-tx.xsd" >
        <http pattern="/images/**" security="none"/>
        <http pattern="/styles/**" security="none"/>
        <http pattern="/js/**" security="none"/>
        <http pattern="/login" security="none" />

        <http  auto-config="true" use-expressions="true">
                <intercept-url pattern="/**" access="isAuthenticated()"/>
                <form-login login-page="/login.jsp"  default-target-url="/index" authentication-failure-url="/login"  /> 

                <logout logout-url="/logout" logout-success-url="/index"/>
        </http>

        <beans:bean id="daoAuthenticationProvider" class="org.springframework.security.authentication.dao.DaoAuthenticationProvider">
            <beans:property name="userDetailsService" ref="userDetailsService" ></beans:property>

        </beans:bean>
        <beans:bean id="authenticationManager" class="org.springframework.security.authentication.ProviderManager">
        <beans:property name="providers">
                    <beans:list>
                    <beans:ref local="daoAuthenticationProvider"/>
                    </beans:list>
        </beans:property>
        </beans:bean>
        <beans:bean  id="userDetailsService" class="com.UserDetailsServiceImpl"></beans:bean>
        <authentication-manager>        
                    <authentication-provider user-service-ref="userDetailsService">
                            <password-encoder hash="md5"></password-encoder>
                    </authentication-provider>
        </authentication-manager>
</beans:beans>

1 个答案:

答案 0 :(得分:0)

编辑1:基于用户输入

更改以下行

<intercept-url pattern="/**" access="isAuthenticated()"/>

沿着这些方向的事情

<intercept-url pattern="/**" access="hasRole('USER_ADMIN')"/>

基本上取出isAuthenticated()就像阅读XML配置一样,很少有人遇到过它的问题。

请告诉我是否修复了它。

额外的例子:Spring security wont redirect on intercept-url

相关问题
最新问题