访问 resource/templates/login.html 报type=Forbidden, status=403@SpringBootApplication
public class MainApplication extends WebMvcConfigurerAdapter {
public static void main(String[] args) {
//SpringApplication.run(MainApplication.class, args);
SpringApplication app=new SpringApplication(MainApplication.class);
Appctx.ctx=app.run(args);
@Override
public void addViewControllers(ViewControllerRegistry registry) {
registry.addViewController("/login").setViewName("login");
registry.addViewController("/").setViewName("login");
super.addViewControllers(registry);
}
}
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
@Autowired
private CustomUserDetailsService customUserDetailsService;//code1 @Override
protected void configure(HttpSecurity http) throws Exception {
//允许所有用户访问”/”和”/home”
http
.csrf().disable()
.authorizeRequests().antMatchers("/", "/home").permitAll()
//其他地址的访问均需验证权限
.anyRequest().authenticated()
.and()
.formLogin()
//指定登录页是”/login”
.loginPage("/login")
//.usernameParameter("TEST").passwordParameter("123456")
.permitAll()
//登录成功后可使用loginSuccessHandler()存储用户信息,可选。
.successHandler(loginSuccessHandler())//code3
.and()
.logout()
//退出登录后的默认网址是”/home”
.logoutSuccessUrl("/home")
.permitAll()
.invalidateHttpSession(true)
.and()
//登录后记住用户,下次自动登录
//数据库中必须存在名为persistent_logins的表
//建表语句见code15
.rememberMe()
.tokenValiditySeconds(1209600);
} @Autowired
public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
//auth.inMemoryAuthentication().withUser("TEST").password("123456").roles("ADMIN");
auth.userDetailsService(customUserDetailsService).passwordEncoder(passwordEncoder());//code5
auth.eraseCredentials(false);
}
}
public class MainApplication extends WebMvcConfigurerAdapter {
public static void main(String[] args) {
//SpringApplication.run(MainApplication.class, args);
SpringApplication app=new SpringApplication(MainApplication.class);
Appctx.ctx=app.run(args);
@Override
public void addViewControllers(ViewControllerRegistry registry) {
registry.addViewController("/login").setViewName("login");
registry.addViewController("/").setViewName("login");
super.addViewControllers(registry);
}
}
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
@Autowired
private CustomUserDetailsService customUserDetailsService;//code1 @Override
protected void configure(HttpSecurity http) throws Exception {
//允许所有用户访问”/”和”/home”
http
.csrf().disable()
.authorizeRequests().antMatchers("/", "/home").permitAll()
//其他地址的访问均需验证权限
.anyRequest().authenticated()
.and()
.formLogin()
//指定登录页是”/login”
.loginPage("/login")
//.usernameParameter("TEST").passwordParameter("123456")
.permitAll()
//登录成功后可使用loginSuccessHandler()存储用户信息,可选。
.successHandler(loginSuccessHandler())//code3
.and()
.logout()
//退出登录后的默认网址是”/home”
.logoutSuccessUrl("/home")
.permitAll()
.invalidateHttpSession(true)
.and()
//登录后记住用户,下次自动登录
//数据库中必须存在名为persistent_logins的表
//建表语句见code15
.rememberMe()
.tokenValiditySeconds(1209600);
} @Autowired
public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
//auth.inMemoryAuthentication().withUser("TEST").password("123456").roles("ADMIN");
auth.userDetailsService(customUserDetailsService).passwordEncoder(passwordEncoder());//code5
auth.eraseCredentials(false);
}
}
解决方案 »
- 怎么去除两个数组中重复的字段 然后获得新的不重复的内容
- hibernate.cfg.xml中能否像spring样引用属性文件
- 请大家帮我分析一下这个系统的技术选型。
- 反编译后的代码问题 HibernateCallBack
- velocity 挂掉了
- tomcat5.5配置连接池的问题
- webwork问题!
- Access denied for user 'root'@'localhost' (using password: YES)
- 有人用过金碟的应用服务器吗?
- j2ee -verbose出現錯誤,大家幫忙看看
- EL表达中获取值什么类型
- Mybatis plus Invalid bound statement
现如今Spring Security中密码的存储格式是“{id}…………”。前面的id是加密方式,id可以是bcrypt、sha256等,后面跟着的是加密后的密码。也就是说,程序拿到传过来的密码的时候,会首先查找被“{”和“}”包括起来的id,来确定后面的密码是被怎么样加密的,如果找不到就认为id是null。程序后台会报错:There is no PasswordEncoder mapped for the id “null”。protected void configure(AuthenticationManagerBuilder auth) throws Exception {
//inMemoryAuthentication 从内存中获取
auth.inMemoryAuthentication().passwordEncoder(new BCryptPasswordEncoder()).withUser("user1").password(new BCryptPasswordEncoder().encode("123456")).roles("USER");
}