Grails spring security+404错误
在生产环境中,应用程序无法映射404错误页面,spring security plugin始终重定向到登录页面,并在tomcat日志访问中返回302错误(暂时移动): 1错误控制器Grails spring security+404错误,grails,spring-security,Grails,Spring Security,在生产环境中,应用程序无法映射404错误页面,spring security plugin始终重定向到登录页面,并在tomcat日志访问中返回302错误(暂时移动): 1错误控制器 @Secured(['permitAll']) class ErrorsController { def error401() { render view: '401' } def error403() { render view:'403' }
@Secured(['permitAll'])
class ErrorsController {
def error401() {
render view: '401'
}
def error403() {
render view:'403'
}
def error404() {
render view:'404'
}
def error500() {
render view:'error'
}
def error503() {
render view:'503'
}
}
2 Url映射
static mappings = {
"/" {
controller = "dashboard"
action = { 'index' }
view = { 'index' }
}
"/$controller/$action?/$id?"{
constraints { controller(matches:/^((?!(api|mobile|web)).*)$/) }
}
"401"(controller: "errors", action: "error401") // session timeout
"403"(controller: "errors", action: "error403")
"404"(controller: "errors", action: "error404")
"500"(controller: "errors", action: "error500")
"500"(controller: "errors", action: "error403", exception: AccessDeniedException)
"500"(controller: "errors", action: "error403", exception: NotFoundException)
}
所以,当仅在生产模式下,我生成错误的url模式时,无法解析到404的重定向。有什么想法吗?它并没有禁用安全性,我只是忽略了发布我的整个配置
'/': ['IS_AUTHENTICATED_ANONYMOUSLY'],
'/**': ['IS_AUTHENTICATED_ANONYMOUSLY'],
'/login/auth': ['IS_AUTHENTICATED_ANONYMOUSLY'],
'/index': ['permitAll'],
'/index.gsp': ['permitAll'],
'/**/_common/**/': ['permitAll'],
'/**/_menu/**/': ['permitAll'],
'/console/**/': ['permitAll'],
'/contact/**/': ['permitAll'],
'/dashboard/**/': ['permitAll'],
'/jcaptcha/**': ['permitAll'],
'/demo/**/': ['permitAll'],
'/errors/**/': ['permitAll'],
'/features/**/': ['permitAll'],
'/layouts/**/': ['permitAll'],
'/service/**/': ['permitAll'],
'/siteinfo/**/': ['permitAll'],
'/store/**/': ['permitAll'],
'/support/**/': ['permitAll'],
'/**/js/**': ['permitAll'],
'/**/css/**': ['permitAll'],
'/**/less/**': ['permitAll'],
'/**/images/**': ['permitAll'],
'/admin/**': ['ROLE_SUPERADMIN'],
'/affiliates/**': ['ROLE_SUPERADMIN'],
'/billing/**': ['ROLE_SUPERADMIN'],
'/dataStore/**': ['ROLE_SUPERADMIN'],
'/requestmap/**': ['ROLE_SUPERADMIN'],
'/user/**': ['ROLE_SUPERADMIN'],
'/userRole/**': ['ROLE_SUPERADMIN'],
'/role/**': ['ROLE_SUPERADMIN'],
'/quartz/**': ['ROLE_SUPERADMIN'],
'/invoice/**': ['ROLE_SUPERADMIN'],
'/billing/**': ['ROLE_SUPERADMIN'],
'/orders/**': ['ROLE_SUPERADMIN'],
'/profile/**': ['ROLE_SUPERADMIN'],
'/pack/**': ['ROLE_SUPERADMIN'],
'/statistics/**': ['ROLE_SUPERADMIN'],
'/uploadedItems/**': ['ROLE_SUPERADMIN'],
'/secure/**': [
'ROLE_ADMIN',
'ROLE_CUSTOMER'
],
'/contacts/**': [
'ROLE_ADMIN',
'ROLE_USER',
'ROLE_GROUP_OWNER'
],
'/files/**': [
'ROLE_ADMIN',
'ROLE_USER',
'ROLE_GROUP_OWNER',
'ROLE_EDITOR',
'ROLE_UPLOADER',
'ROLE_READER'
],
'/notes/**': [
'ROLE_ADMIN',
'ROLE_USER',
'ROLE_GROUP_OWNER',
'ROLE_EDITOR',
'ROLE_UPLOADER',
'ROLE_READER'
],
'/toolbox/**': [
'ROLE_ADMIN',
'ROLE_USER',
'ROLE_GROUP_OWNER',
'ROLE_EDITOR',
'ROLE_UPLOADER',
'ROLE_READER']
它并没有禁用安全性,我只是忽略了发布我的整个配置
'/': ['IS_AUTHENTICATED_ANONYMOUSLY'],
'/**': ['IS_AUTHENTICATED_ANONYMOUSLY'],
'/login/auth': ['IS_AUTHENTICATED_ANONYMOUSLY'],
'/index': ['permitAll'],
'/index.gsp': ['permitAll'],
'/**/_common/**/': ['permitAll'],
'/**/_menu/**/': ['permitAll'],
'/console/**/': ['permitAll'],
'/contact/**/': ['permitAll'],
'/dashboard/**/': ['permitAll'],
'/jcaptcha/**': ['permitAll'],
'/demo/**/': ['permitAll'],
'/errors/**/': ['permitAll'],
'/features/**/': ['permitAll'],
'/layouts/**/': ['permitAll'],
'/service/**/': ['permitAll'],
'/siteinfo/**/': ['permitAll'],
'/store/**/': ['permitAll'],
'/support/**/': ['permitAll'],
'/**/js/**': ['permitAll'],
'/**/css/**': ['permitAll'],
'/**/less/**': ['permitAll'],
'/**/images/**': ['permitAll'],
'/admin/**': ['ROLE_SUPERADMIN'],
'/affiliates/**': ['ROLE_SUPERADMIN'],
'/billing/**': ['ROLE_SUPERADMIN'],
'/dataStore/**': ['ROLE_SUPERADMIN'],
'/requestmap/**': ['ROLE_SUPERADMIN'],
'/user/**': ['ROLE_SUPERADMIN'],
'/userRole/**': ['ROLE_SUPERADMIN'],
'/role/**': ['ROLE_SUPERADMIN'],
'/quartz/**': ['ROLE_SUPERADMIN'],
'/invoice/**': ['ROLE_SUPERADMIN'],
'/billing/**': ['ROLE_SUPERADMIN'],
'/orders/**': ['ROLE_SUPERADMIN'],
'/profile/**': ['ROLE_SUPERADMIN'],
'/pack/**': ['ROLE_SUPERADMIN'],
'/statistics/**': ['ROLE_SUPERADMIN'],
'/uploadedItems/**': ['ROLE_SUPERADMIN'],
'/secure/**': [
'ROLE_ADMIN',
'ROLE_CUSTOMER'
],
'/contacts/**': [
'ROLE_ADMIN',
'ROLE_USER',
'ROLE_GROUP_OWNER'
],
'/files/**': [
'ROLE_ADMIN',
'ROLE_USER',
'ROLE_GROUP_OWNER',
'ROLE_EDITOR',
'ROLE_UPLOADER',
'ROLE_READER'
],
'/notes/**': [
'ROLE_ADMIN',
'ROLE_USER',
'ROLE_GROUP_OWNER',
'ROLE_EDITOR',
'ROLE_UPLOADER',
'ROLE_READER'
],
'/toolbox/**': [
'ROLE_ADMIN',
'ROLE_USER',
'ROLE_GROUP_OWNER',
'ROLE_EDITOR',
'ROLE_UPLOADER',
'ROLE_READER']
哇,这不是答案。这只会禁用整个网站的安全性。哇-这不是答案。这只会禁用整个站点的安全性。