我在我的配置文件中加入了http https信道安全的内容,不加前登陆能等进去,加了后登不进去了 报bad certificate 错误怎么解决。
Spring-security.xml
<?xml version="1.0" encoding="UTF-8"?>
<b:beans xmlns="http://www.springframework.org/schema/security"
xmlns:security="http://www.springframework.org/schema/security"
xmlns:b="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans-2.5.xsd
http://www.springframework.org/schema/security
http://www.springframework.org/schema/security/spring-security-2.0.4.xsd">
<http auto-config='true' session-fixation-protection="migrateSession" access-denied-page="/accessDenied.jsp">
<!-- <intercept-url pattern="/index.html" access="IS_AUTHENTICATED_ANONYMOUSLY" />-->
<!-- <intercept-url pattern="/login.jsp" access="IS_AUTHENTICATED_ANONYMOUSLY" />-->
<!-- <intercept-url pattern="/admin.jsp" access="ROLE_ADMIN" />-->
<!-- <intercept-url pattern="/**" access="ROLE_USER" />-->
<!-- <intercept-url pattern="/user.jsp" access="ROLE_USER"/>-->
<form-login login-page="/login.jsp"
authentication-failure-url="/login.jsp?error=true"
default-target-url="/loginSuccess.jsp" />
<logout logout-success-url="/index.html"/>
<concurrent-session-control max-sessions="1"/>
</http>
<global-method-security secured-annotations="enabled" jsr250-annotations="enabled">
<protect-pointcut access="ROLE_ADMIN" expression="execution(* com.Tony.*server.*(..))"/>
</global-method-security>
<b:bean id="channelProcessingFilter" class="org.springframework.security.securechannel.ChannelProcessingFilter">
<custom-filter before="SESSION_CONTEXT_INTEGRATION_FILTER" />
<b:property name="channelDecisionManager" ref="channelDecisionManager"/>
<b:property name="filterInvocationDefinitionSource">
<b:value>
CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
\A/login.jsp.*\Z=REQUIRES_SECURE_CHANNEL
\A.*\Z=REQUIRES_INSECURE_CHANNEL
</b:value>
</b:property>
</b:bean>
<b:bean id="channelDecisionManager" class="org.springframework.security.securechannel.ChannelDecisionManagerImpl">
<b:property name="channelProcessors">
<b:list>
<b:ref bean="secureChannelProcessor"/>
<b:ref bean="insecureChannelProcessor"/>
</b:list>
</b:property>
</b:bean>
<b:bean id="secureChannelProcessor" class="org.springframework.security.securechannel.SecureChannelProcessor"/>
<b:bean id="insecureChannelProcessor" class="org.springframework.security.securechannel.InsecureChannelProcessor"/>
<b:bean id="filterSecurityInterceptor"
class="org.springframework.security.intercept.web.FilterSecurityInterceptor" autowire="byType">
<custom-filter before="FILTER_SECURITY_INTERCEPTOR" />
<b:property name="objectDefinitionSource" ref="filterInvocationDefinitionSource" />
</b:bean>
<b:bean id="filterInvocationDefinitionSource"
class="JdbcFilterInvocationDefinitionSourceFactoryBean">
<b:property name="dataSource" ref="dataSource"/>
<b:property name="resourceQuery" value="
select res, role from phpbb_role_res
"/>
</b:bean>
<authentication-provider>
<password-encoder hash="md5"></password-encoder>
<jdbc-user-service data-source-ref="dataSource"
users-by-username-query=
"select username, user_password,user_enable from phpbb_users where username=?"
authorities-by-username-query=
"select username, user_role from phpbb_users where username=?"/>
</authentication-provider>
<b:bean id="dataSource" class="org.springframework.jdbc.datasource.DriverManagerDataSource">
<b:property name="driverClassName" value="com.mysql.jdbc.Driver"/>
<b:property name="url" value="jdbc:mysql://localhost:3306/phpbb3"/>
<b:property name="username" value="root"/>
<b:property name="password" value="123"/>
</b:bean>
</b:beans>
WEB.XML<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:web="http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" id="WebApp_ID" version="2.5">
<display-name>HelloWorld</display-name>
<welcome-file-list>
<welcome-file>index.html</welcome-file>
<welcome-file>index.htm</welcome-file>
<welcome-file>index.jsp</welcome-file>
<welcome-file>default.html</welcome-file>
<welcome-file>default.htm</welcome-file>
<welcome-file>default.jsp</welcome-file>
</welcome-file-list>
<filter>
<filter-name>springSecurityFilterChain</filter-name>
<filter-class>
org.springframework.web.filter.DelegatingFilterProxy
</filter-class>
</filter>
<filter-mapping>
<filter-name>springSecurityFilterChain</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- 装载spring-security.xml开始 -->
<listener>
<listener-class>org.springframework.web.context.ContextLoaderListener
</listener-class>
</listener>
<listener>
<listener-class>org.springframework.security.ui.session.HttpSessionEventPublisher
</listener-class>
</listener>
<context-param>
<param-name>contextConfigLocation</param-name>
<param-value>
/WEB-INF/spring-security.xml
</param-value>
</context-param>
<!--装载spring-security.xml结束 -->
</web-app>
Spring-security.xml
<?xml version="1.0" encoding="UTF-8"?>
<b:beans xmlns="http://www.springframework.org/schema/security"
xmlns:security="http://www.springframework.org/schema/security"
xmlns:b="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans-2.5.xsd
http://www.springframework.org/schema/security
http://www.springframework.org/schema/security/spring-security-2.0.4.xsd">
<http auto-config='true' session-fixation-protection="migrateSession" access-denied-page="/accessDenied.jsp">
<!-- <intercept-url pattern="/index.html" access="IS_AUTHENTICATED_ANONYMOUSLY" />-->
<!-- <intercept-url pattern="/login.jsp" access="IS_AUTHENTICATED_ANONYMOUSLY" />-->
<!-- <intercept-url pattern="/admin.jsp" access="ROLE_ADMIN" />-->
<!-- <intercept-url pattern="/**" access="ROLE_USER" />-->
<!-- <intercept-url pattern="/user.jsp" access="ROLE_USER"/>-->
<form-login login-page="/login.jsp"
authentication-failure-url="/login.jsp?error=true"
default-target-url="/loginSuccess.jsp" />
<logout logout-success-url="/index.html"/>
<concurrent-session-control max-sessions="1"/>
</http>
<global-method-security secured-annotations="enabled" jsr250-annotations="enabled">
<protect-pointcut access="ROLE_ADMIN" expression="execution(* com.Tony.*server.*(..))"/>
</global-method-security>
<b:bean id="channelProcessingFilter" class="org.springframework.security.securechannel.ChannelProcessingFilter">
<custom-filter before="SESSION_CONTEXT_INTEGRATION_FILTER" />
<b:property name="channelDecisionManager" ref="channelDecisionManager"/>
<b:property name="filterInvocationDefinitionSource">
<b:value>
CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
\A/login.jsp.*\Z=REQUIRES_SECURE_CHANNEL
\A.*\Z=REQUIRES_INSECURE_CHANNEL
</b:value>
</b:property>
</b:bean>
<b:bean id="channelDecisionManager" class="org.springframework.security.securechannel.ChannelDecisionManagerImpl">
<b:property name="channelProcessors">
<b:list>
<b:ref bean="secureChannelProcessor"/>
<b:ref bean="insecureChannelProcessor"/>
</b:list>
</b:property>
</b:bean>
<b:bean id="secureChannelProcessor" class="org.springframework.security.securechannel.SecureChannelProcessor"/>
<b:bean id="insecureChannelProcessor" class="org.springframework.security.securechannel.InsecureChannelProcessor"/>
<b:bean id="filterSecurityInterceptor"
class="org.springframework.security.intercept.web.FilterSecurityInterceptor" autowire="byType">
<custom-filter before="FILTER_SECURITY_INTERCEPTOR" />
<b:property name="objectDefinitionSource" ref="filterInvocationDefinitionSource" />
</b:bean>
<b:bean id="filterInvocationDefinitionSource"
class="JdbcFilterInvocationDefinitionSourceFactoryBean">
<b:property name="dataSource" ref="dataSource"/>
<b:property name="resourceQuery" value="
select res, role from phpbb_role_res
"/>
</b:bean>
<authentication-provider>
<password-encoder hash="md5"></password-encoder>
<jdbc-user-service data-source-ref="dataSource"
users-by-username-query=
"select username, user_password,user_enable from phpbb_users where username=?"
authorities-by-username-query=
"select username, user_role from phpbb_users where username=?"/>
</authentication-provider>
<b:bean id="dataSource" class="org.springframework.jdbc.datasource.DriverManagerDataSource">
<b:property name="driverClassName" value="com.mysql.jdbc.Driver"/>
<b:property name="url" value="jdbc:mysql://localhost:3306/phpbb3"/>
<b:property name="username" value="root"/>
<b:property name="password" value="123"/>
</b:bean>
</b:beans>
WEB.XML<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:web="http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" id="WebApp_ID" version="2.5">
<display-name>HelloWorld</display-name>
<welcome-file-list>
<welcome-file>index.html</welcome-file>
<welcome-file>index.htm</welcome-file>
<welcome-file>index.jsp</welcome-file>
<welcome-file>default.html</welcome-file>
<welcome-file>default.htm</welcome-file>
<welcome-file>default.jsp</welcome-file>
</welcome-file-list>
<filter>
<filter-name>springSecurityFilterChain</filter-name>
<filter-class>
org.springframework.web.filter.DelegatingFilterProxy
</filter-class>
</filter>
<filter-mapping>
<filter-name>springSecurityFilterChain</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- 装载spring-security.xml开始 -->
<listener>
<listener-class>org.springframework.web.context.ContextLoaderListener
</listener-class>
</listener>
<listener>
<listener-class>org.springframework.security.ui.session.HttpSessionEventPublisher
</listener-class>
</listener>
<context-param>
<param-name>contextConfigLocation</param-name>
<param-value>
/WEB-INF/spring-security.xml
</param-value>
</context-param>
<!--装载spring-security.xml结束 -->
</web-app>
解决方案 »
免费领取超大流量手机卡,每月29元包185G流量+100分钟通话, 中国电信官方发货