Spring security 3.0.3 配置错误

Posted

技术标签:

【中文标题】Spring security 3.0.3 配置错误【英文标题】:Spring security 3.0.3 configuration error 【发布时间】:2011-04-12 21:35:24 【问题描述】:

我正在尝试实现 spring-security 来处理我的 Web 应用程序的身份验证和授权。我无法正确配置。部署 war 文件时,Tomcat 出错。 

org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'org.springframework.security.authentication.ProviderManager#0': Cannot create inner bean '(inner bean)' of type [org.springframework.security.config.authentication.AuthenticationManagerFactoryBean] while setting bean property 'parent'; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name '(inner bean)': FactoryBean threw exception on object creation; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'org.springframework.security.authenticationManager': Cannot resolve reference to bean 'org.springframework.security.authentication.dao.DaoAuthenticationProvider#0' while setting bean property 'providers' with key [0]; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'org.springframework.security.authentication.dao.DaoAuthenticationProvider#0': Instantiation of bean failed; nested exception is java.lang.NoClassDefFoundError: org/springframework/dao/DataAccessException

我得到了以下配置。

WEB-INF/spring/web-application-context.xml

<?xml version="1.0" encoding="UTF-8"?>
<beans:beans xmlns="http://www.springframework.org/schema/security"
  xmlns:beans="http://www.springframework.org/schema/beans"
  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
  xsi:schemaLocation="http://www.springframework.org/schema/beans
           http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
           http://www.springframework.org/schema/security
           http://www.springframework.org/schema/security/spring-security-3.0.3.xsd">

    <http auto-config='true'>
        <intercept-url pattern="/index.html*" access="IS_AUTHENTICATED_ANONYMOUSLY"/>
        <intercept-url pattern="/index.jsp*" access="IS_AUTHENTICATED_ANONYMOUSLY"/>
        <intercept-url pattern="/**" access="IS_AUTHENTICATED_ANONYMOUSLY" />
        <form-login login-page='/jsp/loginform.jsp'/>
    </http>

    <authentication-manager>
        <authentication-provider>
            <user-service>
                <user name="jimi" password="jimispassword" authorities="ROLE_USER, ROLE_ADMIN" />
                <user name="bob" password="bobspassword" authorities="ROLE_USER" />
            </user-service>
        </authentication-provider>
    </authentication-manager>

</beans:beans>

WEB-INF/web.xml

<listener>
    <listener-class>
      org.springframework.web.context.ContextLoaderListener
    </listener-class>
  </listener>

  <context-param>
    <param-name>contextConfigLocation</param-name>
      <param-value>
        /WEB-INF/spring/web-application-context.xml
      </param-value>
  </context-param>


  <filter>
    <filter-name>myFilter</filter-name>
    <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
  </filter>

  <filter-mapping>
    <filter-name>myFilter</filter-name>
    <url-pattern>/*</url-pattern>
  </filter-mapping>

【问题讨论】:

【参考方案1】:

异常消息清楚地表明缺少类org.springframework.dao.DataAccessException,因此您需要将org.springframework.transaction-*.jar 添加到类路径(即添加到/WEB-INF/lib)。

【讨论】:

以上是关于Spring security 3.0.3 配置错误的主要内容,如果未能解决你的问题,请参考以下文章

spring security 5.0 密码未加密报错

Spring Security 重写多个WebSecurityConfigurerAdapter 系统会报错

Spring Security问题

巨坑:spring cloud项目eureka添加security认证之后,client端注册失败

有啥方法可以强制在 spring-security 中的某些页面使用 https 吗?

CORS与CSRF在Spring Security中的使用