How to implement Spring Security 4 with both XML and Java config -

-

i trying implement spring-security 4 spring mvc web , rest app. added 2 classes enable spring security java config way. still want hold onto web.xml , not change entire project use java config. that, following error:

29-may-2015 08:47:12.826 severe [localhost-startstop-1]   org.apache.catalina.core.standardcontext.filterstart exception starting    filter springsecurityfilterchain org.springframework.beans.factory.nosuchbeandefinitionexception: no bean    named 'springsecurityfilterchain' defined @ org.springframework.beans.factory.support.defaultlistablebeanfactory. getbeandefinition(defaultlistablebeanfactory.java:687)

as can see, says springsecurityfilterchain cannot recognized. of course supposed enabled @enablewebsecurity see below:

classes used spring security:

@configuration @enablewebsecurity public class securityconfig extends websecurityconfigureradapter {  @autowired public void configureglobal(authenticationmanagerbuilder auth) throws exception {   auth.inmemoryauthentication().withuser("abc").password("123456").roles("user");   auth.inmemoryauthentication().withuser("admin").password("123456").roles("admin");   auth.inmemoryauthentication().withuser("dba").password("123456").roles("dba"); }  @override protected void configure(httpsecurity http) throws exception {    http.authorizerequests()     .antmatchers("/admin/**").access("hasrole('role_admin')")     .antmatchers("/dba/**").access("hasrole('role_admin') or hasrole('role_dba')")     .and().formlogin();      } }  public class springsecurityinitializer extends abstractsecuritywebapplicationinitializer {    //do nothing }

the weird thing if add springsecurityfilterchain web.xml, @ runtime complains , says there duplicate springsecurityfilterchain. noticed in java config, this:

public class mvcwebapplicationinitializer extends     abstractannotationconfigdispatcherservletinitializer {  @override protected class<?>[] getrootconfigclasses() {     return new class[] { securityconfig.class }; }

where register securityconfig java config mvcwebapp. makes part of servlet context believe.

all in all, how can have springsecurityfilterchain recognized? need register securityconfig class in web.xml or existing application context?

i think may first problem area:

public class securitywebapplicationinitializer   extends abstractsecuritywebapplicationinitializer {  }

the spring docs say:

instead, should register spring security existing applicationcontext. example, if using spring mvc our securitywebapplicationinitializer.

can mean in case, can take securityconfig , should make bean? or not bean because dicoverable through @configuration?

how can make securityconfig recognized via xml while using new java config well?

assuming want spring security java config working 2 classes securityconfig , securitywebapplicationinitializer, need following working. please note assuming spring mvc configuration still xml. please note com.mkyong.web.config package have securityconfigclass. ensure web context have security configuration available.

web.xml follows

<context-param>           <param-name>contextclass</param-name>           <param-value>               org.springframework.web.context.support.annotationconfigwebapplicationcontext           </param-value>       </context-param>       <context-param>           <param-name>contextconfiglocation</param-name>           <param-value>com.mkyong.web.config</param-value>       </context-param>     <listener>       <listener-class>org.springframework.web.context.contextloaderlistener</listener-class>   </listener>

Comments

Post a Comment

Popular posts from this blog

Java 3D LWJGL collision -

-
i making 3d java game lwjgl library, , wondering how add collision detection, player not go through models. i using obj models. here objloader class, loads models: package renderengine; import java.io.bufferedreader; import java.io.file; import java.io.filenotfoundexception; import java.io.filereader; import java.util.arraylist; import java.util.list; import models.rawmodel; import org.lwjgl.util.vector.vector2f; import org.lwjgl.util.vector.vector3f; public class objloader { public static rawmodel loadobjmodel(string filename, loader loader){ filereader fr = null; try { fr = new filereader(new file("res/"+filename+".obj")); } catch (filenotfoundexception e) { system.err.println("couldn't load file!"); e.printstacktrace(); } bufferedreader reader = new bufferedreader(fr); string line; list<vector3f> vertices = new arraylist<vector3f...
Read more

spring - SubProtocolWebSocketHandler - No handlers -

-
i have ugly error during deploying spring app on jboss. 18:11:16,025 error [org.apache.catalina.core.containerbase.[jboss.web].[default-host].[/consumer]] (msc service thread 1-7) exception sending context initialized event listener instance of class org.springframework.web.context.contextloaderlistener: org.springframework.context.applicationcontextexception: failed start bean 'subprotocolwebsockethandler'; nested exception java.lang.illegalargumentexception: no handlers @ org.springframework.context.support.defaultlifecycleprocessor.dostart(defaultlifecycleprocessor.java:176) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.springframework.context.support.defaultlifecycleprocessor.access$200(defaultlifecycleprocessor.java:51) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.springframework.context.support.defaultlifecycleprocessor$lifecyclegroup.start(defaultlifecycleprocessor.java:346) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.s...
Read more

methods - python can't use function in submodule -

-
my folder structure this: pythonstuff/ program.py modulea/ __init__.py foo.py bar.py here's code bar.py : def hello(): print("hello, world!") here's code program.py : #!/usr/bin/env python3 modulea import bar bar.hello() i run $ python3 program.py somehow error: file "program.py", line 3, in <module> bar.hello() attributeerror: 'module' object has no attribute 'hello' edit: __init__.py file empty. edit2: after trying realized had bar.py in root directory contained hello() method. bar.py in modulea/ directory empty. add it import os __all__ = [] module in os.listdir(os.path.dirname(__file__)): if module != '__init__.py' , module[-3:] == '.py': __all__.append(module[:-3]) the init .py files required make python treat directories containing packages; done prevent directories common name, such string, unintentionally hiding v...
Read more