spring-cloud-feign - 无法使用伪装客户端从Grails应用程序中的@Secured API获取数据

我正在尝试使用伪装客户端从spring-boot微服务中调用grails应用程序的@Secured API，然后出现此错误。

我正在从邮递员http://localhost:8180/spring/api/getData调用springboot应用程序API

此getData API在内部使用伪装客户端从grails应用程序获取所有数据。

feign.codec.DecodeException：无法提取响应：不适合找到响应类型为[接口的HttpMessageConverter java.util.List]，内容类型为[text / html; charset = utf-8]，位于 feign.SynchronousMethodHandler.decode（SynchronousMethodHandler.java:169）在 feign.SynchronousMethodHandler.executeAndDecode（SynchronousMethodHandler.java:133）在 feign.SynchronousMethodHandler.invoke（SynchronousMethodHandler.java:76）在 feign.ReflectiveFeign $ FeignInvocationHandler.invoke（ReflectiveFeign.java:103）在com.sun.proxy。$ Proxy236.getAllProjects（未知来源）处 com.oodles.service.DevopsService.getAllProjectDetails（DevopsService.java:57）在 com.oodles.controller.DevopsController.getAllProjectDetails（DevopsController.java:45）在 com.oodles.controller.DevopsController $$ FastClassBySpringCGLIB $$ 9bc494e0.invoke（）在 org.springframework.cglib.proxy.MethodProxy.invoke（MethodProxy.java:204）在 org.springframework.aop.framework.CglibAopProxy $ CglibMethodInvocation.invokeJoinpoint（CglibAopProxy.java:738）在 org.springframework.aop.framework.ReflectiveMethodInvocation.proceed（ReflectiveMethodInvocation.java:157）在 org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor.invoke（MethodSecurityInterceptor.java:69）在 org.springframework.aop.framework.ReflectiveMethodInvocation.proceed（ReflectiveMethodInvocation.java:179）在 org.springframework.aop.framework.CglibAopProxy $ DynamicAdvisedInterceptor.intercept（CglibAopProxy.java:673）在 com.oodles.controller.DevopsController $$ EnhancerBySpringCGLIB $$ a02b5d8.getAllProjectDetails（）在sun.reflect.NativeMethodAccessorImpl.invoke0（本机方法）处 sun.reflect.NativeMethodAccessorImpl.invoke（NativeMethodAccessorImpl.java:62）在 sun.reflect.DelegatingMethodAccessorImpl.invoke（DelegatingMethodAccessorImpl.java:43）在java.lang.reflect.Method.invoke（Method.java:498）在 org.springframework.web.method.support.InvocableHandlerMethod.doInvoke（InvocableHandlerMethod.java:205）在 org.springframework.web.method.support.InvocableHandlerMethod.invokeForRequest（InvocableHandlerMethod.java:133）在 org.springframework.web.servlet.mvc.method.annotation.ServletInvocableHandlerMethod.invokeAndHandle（ServletInvocableHandlerMethod.java:97）在 org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.invokeHandlerMethod（RequestMappingHandlerAdapter.java:827）在 org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.handleInternal（RequestMappingHandlerAdapter.java:738）在 org.springframework.web.servlet.mvc.method.AbstractHandlerMethodAdapter.handle（AbstractHandlerMethodAdapter.java:85）在 org.springframework.web.servlet.DispatcherServlet.doDispatch（DispatcherServlet.java:967）在 org.springframework.web.servlet.DispatcherServlet.doService（DispatcherServlet.java:901）在 org.springframework.web.servlet.FrameworkServlet.processRequest（FrameworkServlet.java:970）在 org.springframework.web.servlet.FrameworkServlet.doGet（FrameworkServlet.java:861）在javax.servlet.http.HttpServlet.service（HttpServlet.java:635）处 org.springframework.web.servlet.FrameworkServlet.service（FrameworkServlet.java:846）在javax.servlet.http.HttpServlet.service（HttpServlet.java:742） org.apache.catalina.core.ApplicationFilterChain.internalDoFilter（ApplicationFilterChain.java:231）在 org.apache.catalina.core.ApplicationFilterChain.doFilter（ApplicationFilterChain.java:166）在 org.apache.tomcat.websocket.server.WsFilter.doFilter（WsFilter.java:52）在 org.apache.catalina.core.ApplicationFilterChain.internalDoFilter（ApplicationFilterChain.java:193）在 org.apache.catalina.core.ApplicationFilterChain.doFilter（ApplicationFilterChain.java:166）在 org.springframework.boot.web.filter.ApplicationContextHeaderFilter.doFilterInternal（ApplicationContextHeaderFilter.java:55）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.apache.catalina.core.ApplicationFilterChain.internalDoFilter（ApplicationFilterChain.java:193）在 org.apache.catalina.core.ApplicationFilterChain.doFilter（ApplicationFilterChain.java:166）在 org.springframework.boot.actuate.trace.WebRequestTraceFilter.doFilterInternal（WebRequestTraceFilter.java:110）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.apache.catalina.core.ApplicationFilterChain.internalDoFilter（ApplicationFilterChain.java:193）在 org.apache.catalina.core.ApplicationFilterChain.doFilter（ApplicationFilterChain.java:166）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:317）在 org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke（FilterSecurityInterceptor.java:127）在 org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter（FilterSecurityInterceptor.java:91）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.security.web.access.ExceptionTranslationFilter.doFilter（ExceptionTranslationFilter.java:114）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.security.web.session.SessionManagementFilter.doFilter（SessionManagementFilter.java:137）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter（AnonymousAuthenticationFilter.java:111）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter（SecurityContextHolderAwareRequestFilter.java:170）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.security.web.savedrequest.RequestCacheAwareFilter.doFilter（RequestCacheAwareFilter.java:63）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 com.oodles.security.JwtAuthorizationFilter.doFilterInternal（JwtAuthorizationFilter.java:61）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.security.web.authentication.logout.LogoutFilter.doFilter（LogoutFilter.java:116）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.web.filter.CorsFilter.doFilterInternal（CorsFilter.java:96）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.security.web.header.HeaderWriterFilter.doFilterInternal（HeaderWriterFilter.java:64）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter（SecurityContextPersistenceFilter.java:105）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal（WebAsyncManagerIntegrationFilter.java:56）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.springframework.security.web.FilterChainProxy $ VirtualFilterChain.doFilter（FilterChainProxy.java:331）在 org.springframework.security.web.FilterChainProxy.doFilterInternal（FilterChainProxy.java:214）在 org.springframework.security.web.FilterChainProxy.doFilter（FilterChainProxy.java:177）在 org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate（DelegatingFilterProxy.java:346）在 org.springframework.web.filter.DelegatingFilterProxy.doFilter（DelegatingFilterProxy.java:262）在 org.apache.catalina.core.ApplicationFilterChain.internalDoFilter（ApplicationFilterChain.java:193）在 org.apache.catalina.core.ApplicationFilterChain.doFilter（ApplicationFilterChain.java:166）在 org.springframework.web.filter.RequestContextFilter.doFilterInternal（RequestContextFilter.java:99）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.apache.catalina.core.ApplicationFilterChain.internalDoFilter（ApplicationFilterChain.java:193）在 org.apache.catalina.core.ApplicationFilterChain.doFilter（ApplicationFilterChain.java:166）在 org.springframework.web.filter.HttpPutFormContentFilter.doFilterInternal（HttpPutFormContentFilter.java:105）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.apache.catalina.core.ApplicationFilterChain.internalDoFilter（ApplicationFilterChain.java:193）在 org.apache.catalina.core.ApplicationFilterChain.doFilter（ApplicationFilterChain.java:166）在 org.springframework.web.filter.HiddenHttpMethodFilter.doFilterInternal（HiddenHttpMethodFilter.java:81）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.apache.catalina.core.ApplicationFilterChain.internalDoFilter（ApplicationFilterChain.java:193）在 org.apache.catalina.core.ApplicationFilterChain.doFilter（ApplicationFilterChain.java:166）在 org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal（CharacterEncodingFilter.java:197）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.apache.catalina.core.ApplicationFilterChain.internalDoFilter（ApplicationFilterChain.java:193）在 org.apache.catalina.core.ApplicationFilterChain.doFilter（ApplicationFilterChain.java:166）在 org.springframework.boot.actuate.autoconfigure.MetricsFilter.doFilterInternal（MetricsFilter.java:106）在 org.springframework.web.filter.OncePerRequestFilter.doFilter（OncePerRequestFilter.java:107）在 org.apache.catalina.core.ApplicationFilterChain.internalDoFilter（ApplicationFilterChain.java:193）在 org.apache.catalina.core.ApplicationFilterChain.doFilter（ApplicationFilterChain.java:166）在 org.apache.catalina.core.StandardWrapperValve.invoke（StandardWrapperValve.java:198）在 org.apache.catalina.core.StandardContextValve.invoke（StandardContextValve.java:96）在 org.apache.catalina.authenticator.AuthenticatorBase.invoke（AuthenticatorBase.java:478）在 org.apache.catalina.core.StandardHostValve.invoke（StandardHostValve.java:140）在 org.apache.catalina.valves.ErrorReportValve.invoke（ErrorReportValve.java:80）在 org.apache.catalina.core.StandardEngineValve.invoke（StandardEngineValve.java:87）在 org.apache.catalina.connector.CoyoteAdapter.service（CoyoteAdapter.java:342）在 org.apache.coyote.http11.Http11Processor.service（Http11Processor.java:799）在 org.apache.coyote.AbstractProcessorLight.process（AbstractProcessorLight.java:66）在 org.apache.coyote.AbstractProtocol $ ConnectionHandler.process（AbstractProtocol.java:868）在 org.apache.tomcat.util.net.NioEndpoint $ SocketProcessor.doRun（NioEndpoint.java:1455）在 org.apache.tomcat.util.net.SocketProcessorBase.run（SocketProcessorBase.java:49）在 java.util.concurrent.ThreadPoolExecutor.runWorker（ThreadPoolExecutor.java:1149）在 java.util.concurrent.ThreadPoolExecutor $ Worker.run（ThreadPoolExecutor.java:624）在 org.apache.tomcat.util.threads.TaskThread $ WrappingRunnable.run（TaskThread.java:61）在java.lang.Thread.run（Thread.java:748）造成原因： org.springframework.web.client.RestClientException：无法提取响应：没有找到合适的HttpMessageConverter作为响应类型 [接口java.util.List]和内容类型[text / html; charset = utf-8] 在 org.springframework.web.client.HttpMessageConverterExtractor.extractData（HttpMessageConverterExtractor.java:110）在 org.springframework.cloud.netflix.feign.support.SpringDecoder.decode（SpringDecoder.java:59）在 org.springframework.cloud.netflix.feign.support.ResponseEntityDecoder.decode（ResponseEntityDecoder.java:47）在 feign.SynchronousMethodHandler.decode（SynchronousMethodHandler.java:165） ...还有116个

当我从Grails API删除@Secured注释时，它工作正常，并且我正在获取所有数据。

当我直接从邮递员调用grails API时，就像 http://localhost:8080/dev/getALLData，并且在Cookie中我传递了jwt令牌，然后它工作正常。

此外，我的springboot API也受到保护，我需要在标头中传递jwt。

无法使用伪装客户端从Grails应用程序中的@Secured API获取数据

0 个答案: