Spring Security: Not able to configure method security with java config -


i struggling configure method security java configured spring security. configuration works without problem, until use @secured annotation within controller.

spring security config: (java config)

@configuration @enablewebsecurity @enableglobalmethodsecurity(securedenabled=true) public class securityconfig extends websecurityconfigureradapter {      @autowired     private datasource datasource;      @override     public void configure(websecurity web) throws exception {         web             .ignoring()                 .antmatchers("/webjars/**","/css/**", "/less/**","/img/**","/js/**");     }      @autowired     public void registerglobal(authenticationmanagerbuilder auth) throws exception {         shapasswordencoder shapasswordencoder = new shapasswordencoder(256);         auth           .jdbcauthentication()               .datasource(datasource)               .usersbyusernamequery(getuserquery())               .authoritiesbyusernamequery(getauthoritiesquery())               .passwordencoder(shapasswordencoder);     }      @override     protected void configure(httpsecurity http) throws exception {         http         .authorizerequests()             .anyrequest().hasauthority("basic_permission")             .and()         .formlogin()             .loginpage("/login")             .defaultsuccessurl("/success-login", true)             .failureurl("/error-login")             .loginprocessingurl("/process-login")             .usernameparameter("security_username")             .passwordparameter("security_password")             .permitall()              .and()         .logout()             .logoutsuccessurl("/login")             .logouturl("/logout")             .permitall()             .and()         .rememberme()             .key("04e87501b3f04db297adb74fa8bd48ca")             .and()         .csrf()             .disable();     }      private string getuserquery() {         return "select username username, password password, active enabled "                 + "from employee "                 + "where username = ?";     }      private string getauthoritiesquery() {         return "select distinct employee.username username, permission.name authority "                 + "from employee, employee_role, role, role_permission, permission "                 + "where employee.id = employee_role.employee_id "                 + "and role.id = employee_role.role_id "                 + "and role.id = role_permission.role_id "                 + "and permission.id = role_permission.permission_id "                 + "and employee.username = ? "                 + "and employee.active = 1";     }  }

as add @secured("employee_delete") annotation controller method,i receive following exception.

java.lang.illegalargumentexception: expecting find single bean type interface org.springframework.security.authentication.authenticationmanager, found []

so added authenticationmanager bean:

@bean  @override public authenticationmanager authenticationmanagerbean() throws exception {      return super.authenticationmanagerbean(); }

but has error result:

java.lang.illegalstateexception: cannot apply org.springframework.security.config.annotation.authentication.configurers.provisioning.jdbcuserdetailsmanagerconfigurer@34e81675 built object

it seems have share authenticationmanagerbean configured jdbcauthentication not able this. in advance!

it sounds though encountering ordering issue described in sec-2477.

as workaround, can should able use configure method authenticationmanagerbean method. not use @autowired authenticationmanagerbuilder approach.

@override protected void configure(authenticationmanagerbuilder auth) throws exception {     shapasswordencoder shapasswordencoder = new shapasswordencoder(256);     auth       .jdbcauthentication()           .datasource(datasource)           .usersbyusernamequery(getuserquery())           .authoritiesbyusernamequery(getauthoritiesquery())           .passwordencoder(shapasswordencoder); }  @bean  @override public authenticationmanager authenticationmanagerbean() throws exception {      return super.authenticationmanagerbean(); }

-

Comments

Post a Comment

Popular posts from this blog

html - Sizing a high-res image (~8MB) to display entirely in a small div (circular, diameter 100px) -

first of all, thank being patient know simple question more couple of weeks' experience figure out. i've seen folks persevere , helpful on here , hope you're willing me. here fiddle: http://jsfiddle.net/65uzf/ here 1 of places searched answers on here: ( vertically center image thumbnails fix-sized div ) tried solutions on there , didn't work out me. i've searched ~4 or 5 others, , been unsuccessful those, too. what want take large image (what linked background-image #ysypic , #tabpic divs) , display thumbnail version of image in confines of divs have set it. is, using background properties have laid out in css, portion of image displays inside of circular divs. without these properties, display defaults smaller section of image [presumably pi*(50^2) area in top left] terrible resolution. i not care if entire image doesn't display inside of circles (it won't, given difference in shape), , overflow not being displayed fine. want able see figu
Read more

java - IntelliJ - No such instance method -

using intellij's 12 ultimate, i'm running following code in debugger: java import play.api.libs.json.jsvalue; public class foo { ... public jsvalue tojson() { ... } public class fooexample { ... foo foo = new foo(); system.out.println("...); //<-- breakpoint at breakpoint, right-clicked source code , picked "evaluate expression," typing in: foo.tojson() . but following error showed up: no such instance method: play.api.libs.json.jsvalue$class.com.foo.foo.tojson () am doing wrong? foo#tojson calls scala code, if matters. edit had breakpoint after instantiation of foo. downvoted it, deserved it. edit my answer no longer valid after op modified question (i.e. moved breakpoint actual is).. a breakpoint hit before line executed. in case foo has not yet been declared or instantiated (i.e. foo constructor has not yet been called). you'll need put breakpoint @ next line (or step on current line) if want evaluate foo .
Read more

identifier - Is it possible for an html5 document to have two ids? -

i wondering if html5 element can have 2 ids, this: <button id="thing1" id="thing2" name="button1" onclick="change()">click here</button> or this: <button id="thing1, thing2" name="button1" onclick="change()">click here</button> also, if 1 of ids said 1 thing, , other id said thing, 1 used? tl;dr : no. in versions of html, each element can have 1 id. see the spec : the id attribute specifies element's unique identifier (id). [dom] the value must unique amongst ids in element's home subtree , must contain @ least 1 character. the value must not contain space characters. note: there no other restrictions on form id can take; in particular, ids can consist of digits, start digit, start underscore, consist of punctuation , etc. note: element's unique identifier can used variety of purposes, notably way link specific parts of document usin
Read more