Spring Boot 不显示网页内容

Posted 2023-02-26

【中文标题】Spring Boot 不显示网页内容

【英文标题】：Spring Boot not displaying web contents

【发布时间】：2015-08-28 09:03:03

【问题描述】：

我有一个用作安全 REST API 后端的 Spring Boot 应用程序。 我想要一些静态页面，其中包含有关该 API 的文档（例如，我想使用 Wiki）

就我而言，我无法让它显示静态内容：例如我尝试使用greeting example 并调用http://localhost:8080/greeting，它会显示“greeting”（不提供greeting.html 页面）

我怀疑这个问题与 Spring Security 中的某些过滤器有关。

这就是调用的过滤器链

o.a.c.c.C.[Tomcat].[localhost].[/]       : Initializing Spring FrameworkServlet 'dispatcherServlet'
o.s.web.servlet.DispatcherServlet        : FrameworkServlet 'dispatcherServlet': initialization started
o.s.web.servlet.DispatcherServlet        : FrameworkServlet 'dispatcherServlet': initialization completed in 19 ms
o.s.security.web.FilterChainProxy        : /greeting at position 1 of 7 in additional filter chain; firing Filter: 'HeaderWriterFilter'
o.s.security.web.FilterChainProxy        : /greeting at position 2 of 7 in additional filter chain; firing Filter: 'StatelessLoginFilter'
o.s.s.w.u.matcher.AntPathRequestMatcher  : Checking match of request : '/greeting'; against '/api/login'
o.s.security.web.FilterChainProxy        : /greeting at position 3 of 7 in additional filter chain; firing Filter: 'StatelessAuthenticationFilter'
o.s.security.web.FilterChainProxy        : /greeting at position 4 of 7 in additional filter chain; firing Filter: 'SecurityContextHolderAwareRequestFilter'
o.s.security.web.FilterChainProxy        : /greeting at position 5 of 7 in additional filter chain; firing Filter: 'AnonymousAuthenticationFilter'
o.s.s.w.a.AnonymousAuthenticationFilter  : Populated SecurityContextHolder with anonymous token: 'org.springframework.security.authentication.AnonymousAuthenticationToken@9055c2bc: Principal: anonymousUser; Credentials: [PROTECTED]; Authenticated: true; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@b364: RemoteIpAddress: 0:0:0:0:0:0:0:1; SessionId: null; Granted Authorities: ROLE_ANONYMOUS'
o.s.security.web.FilterChainProxy        : /greeting at position 6 of 7 in additional filter chain; firing Filter: 'ExceptionTranslationFilter'
o.s.security.web.FilterChainProxy        : /greeting at position 7 of 7 in additional filter chain; firing Filter: 'FilterSecurityInterceptor'
o.s.s.w.u.matcher.AntPathRequestMatcher  : Checking match of request : '/greeting'; against '/'
o.s.s.w.u.matcher.AntPathRequestMatcher  : Checking match of request : '/greeting'; against '/documentation'
o.s.s.w.u.matcher.AntPathRequestMatcher  : Checking match of request : '/greeting'; against '/greeting'
o.s.s.w.a.i.FilterSecurityInterceptor    : Secure object: FilterInvocation: URL: /greeting; Attributes: [permitAll]
o.s.s.w.a.i.FilterSecurityInterceptor    : Previously Authenticated: org.springframework.security.authentication.AnonymousAuthenticationToken@9055c2bc: Principal: anonymousUser; Credentials: [PROTECTED]; Authenticated: true; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@b364: RemoteIpAddress: 0:0:0:0:0:0:0:1; SessionId: null; Granted Authorities: ROLE_ANONYMOUS
o.s.s.access.vote.AffirmativeBased       : Voter: org.springframework.security.web.access.expression.WebExpressionVoter@58e65a6f, returned: 1
o.s.s.w.a.i.FilterSecurityInterceptor    : Authorization successful
o.s.s.w.a.i.FilterSecurityInterceptor    : RunAsManager did not change Authentication object
o.s.security.web.FilterChainProxy        : /greeting reached end of additional filter chain; proceeding with original chain
o.s.s.w.a.ExceptionTranslationFilter     : Chain processed normally

我将 greeting.html 文件放在 src/main/webapp/WEB-INF/templates 和 src/main/resources/templates 中，我试图在 application.properties 中指定

# For the standard MVC JSTL view resolver
spring.view.prefix=/WEB-INF/templates/
spring.view.suffix=.html

我尝试了这些 *** 中提出的解决方案：“Spring Boot not serving static content”和“spring boot not launching static web content”但没有任何改变......

最后是 WebSecurityConfigurerAdapter：

public class StatelessAuthenticationSecurityConfig extends WebSecurityConfigurerAdapter 

@Autowired
private UserDetailsService userDetailsService;

@Autowired
private TokenAuthenticationService tokenAuthenticationService;

@Autowired
private LDAPAuthenticationService ldapAuthenticationService;

@Value("$ldap.useLdapForAuthentication")
private String useLdapForAuthentication;

public StatelessAuthenticationSecurityConfig() 
    super(true);



@Override
protected void configure(HttpSecurity http) throws Exception 
    http
            .exceptionHandling().and()
            .anonymous().and()
            .servletApi().and()
            .headers().cacheControl().and()
            .authorizeRequests()

            //allow anonymous resource requests
            .antMatchers("/").permitAll()
            .antMatchers("/documentation").permitAll()
            .antMatchers("/greeting").permitAll()

            .antMatchers("/favicon.ico").permitAll()
            .antMatchers("/resources/**").permitAll()

            //allow anonymous POSTs to login
            .antMatchers(HttpMethod.OPTIONS, "/api/login").permitAll()
            .antMatchers(HttpMethod.POST, "/api/login").permitAll()
            .antMatchers(HttpMethod.OPTIONS, "/api/**").permitAll()
            .antMatchers(HttpMethod.POST, "/api/**").hasAnyRole("ADMIN", "USER")
            .antMatchers(HttpMethod.GET, "/api/**").hasAnyRole("ADMIN", "USER") //e compagnia cantando 

            //defined Admin only API area
            .antMatchers("/admin/**").hasRole("ADMIN")

            //all other request need to be authenticated
            .anyRequest().hasRole("USER")
            .and()              

            // custom JSON based authentication by POST of "username":"<name>","password":"<password>" which sets the token header upon authentication
            .addFilterBefore(new StatelessLoginFilter("/api/login", tokenAuthenticationService, userDetailsService, ldapAuthenticationService, authenticationManager(), useLdapForAuthentication), UsernamePasswordAuthenticationFilter.class)

            // custom Token based authentication based on the header previously given to the client
            .addFilterBefore(new StatelessAuthenticationFilter(tokenAuthenticationService), UsernamePasswordAuthenticationFilter.class);


@Bean
@Override
public AuthenticationManager authenticationManagerBean() throws Exception 
    return super.authenticationManagerBean();


@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception 
    auth.userDetailsService(userDetailsService).passwordEncoder(new BCryptPasswordEncoder());


@Override
protected UserDetailsService userDetailsService() 
    return userDetailsService;

.antMatchers("/resources/**").permitAll() - 甚至应该允许访问资源/模板

我真的不明白为什么它不呈现网页内容 拜托，你能给我一些提示吗？

EDIT1

控制器：

@RestController
public class GreetingController 

@RequestMapping("/greeting")
public String greeting(@RequestParam(value="name", required=false, defaultValue="World") String name, Model model) 
    model.addAttribute("name", name);
    return "greeting";

【问题讨论】：

添加你的控制器。

【参考方案1】：

根据Spring Guide：Building a RESTful Web Service

传统 MVC 控制器和 RESTful 之间的关键区别 上面的 web 服务控制器是 HTTP 响应体的方式 创建的。而不是依靠视图技术来执行 问候数据到 HTML 的服务器端呈现，这个 RESTful Web 服务控制器只是简单地填充并返回一个 Greeting 对象。这 对象数据将作为 JSON 直接写入 HTTP 响应。

因此，在您的情况下，它会以 JSON 格式返回“问候”。如果你想让它返回页面greeting.html，你应该使用普通的@Controller。

【讨论】：

就是这样......我多么可耻:)我完全错过了！非常感谢