发表新帖
发表新帖

Spring Security Java Config

前端 未结
关注
4 598
一生所求
一生所求 2021-01-03 03:55

I\'m trying to use JavaConfig instead of XML configuration for Spring Security. I would like to use @PreAuthorization for declaring access rights.

My Sp

相关标签:
4条回答
  • 清歌不尽
    2021-01-03 04:07

    In my case, I have a line super.configure(auth); in the overriding method configure(AuthenticationManagerBuilder auth).

    After it was removed, the exception is gone.

    0 讨论(0)
  • 情话喂你
    2021-01-03 04:13

    from the stacktrace, you don't have authentication manager defiend correctly :

    Caused by: java.lang.IllegalArgumentException: Expecting to only find a single bean for type interface org.springframework.security.authentication.AuthenticationManager, but found []

    Here is working example :

    @Configuration
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {

    @Autowired
    public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
        auth
            .inMemoryAuthentication()
                .withUser("user").password("password").roles("USER");
    }
}

    Just add the global method annotation, and change to method to not override and be autowired.

    0 讨论(0)
  • 情话喂你
    2021-01-03 04:30

    According to your stacktrace, there’s no AuthenticationManager bean in your context.

    Expecting to only find a single bean for type interface org.springframework.security.authentication.AuthenticationManager, but found []

    It seems that you need to explicitly expose AuthenticationManager as a bean; try this:

    @Configuration
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true)
public class SecurityConfig extends WebSecurityConfigurerAdapter {

    @Override
    protected void registerAuthentication(AuthenticationManagerBuilder auth) throws Exception {
        auth.inMemoryAuthentication()
            .withUser( "user" ).password( "password" ).roles( "USER" );
    }

    @Bean @Override
    public AuthenticationManager authenticationManagerBean() throws Exception {
        return super.authenticationManagerBean();
    }
}
    0 讨论(0)
  • 小鲜肉
    2021-01-03 04:30

    As NimChimpsky notes, Spring 3.2.0.RELEASE requires a configuration update.

    Using this configuration, I was getting exactly the same exception as the OP, but only about half the time. The other half of the time the app started up just fine. I assume that there's some kind of race condition.

    Originally I was pulling the security configuration in using @Import on my root configuration:

    @Configuration
@Import(SecurityConfig.class)
... other annotations ...
public class RootConfig {
   ...
}

    When I replaced that with

    public class WebAppInit extends AbstractAnnotationConfigDispatcherServletInitializer {

    @Override
    protected Class<?>[] getRootConfigClasses() {
        return new Class<?>[] { RootConfig.class, SecurityConfig.class };
    }
}

    the problem went away. Didn't dive into the reasons why, so I can't speak to that, but you might give it a try.

    0 讨论(0)
 看不清?
提交回复
热议问题