Java 将自定义筛选器添加到Spring Security后用于验证的空web表单
我有一个Spring4Web应用程序,具有标准身份验证-用户名和密码。对于验证,我使用表单烘焙bean javax.validation和Hibernate validator:Java 将自定义筛选器添加到Spring Security后用于验证的空web表单,java,spring,validation,spring-mvc,authentication,Java,Spring,Validation,Spring Mvc,Authentication,我有一个Spring4Web应用程序,具有标准身份验证-用户名和密码。对于验证,我使用表单烘焙bean javax.validation和Hibernate validator: import org.hibernate.validator.constraints.NotEmpty; import javax.validation.constraints.Size; public class SignupForm { @Size(min = 6, message = "must be
import org.hibernate.validator.constraints.NotEmpty;
import javax.validation.constraints.Size;
public class SignupForm {
@Size(min = 6, message = "must be at least 6 characters")
private String password;
@NotEmpty
private String email;
// get / set methods
}
@RequestMapping(value = "/signup", method = RequestMethod.POST)
public String createRecruiter(@ModelAttribute("signUpForm") @Valid SignupForm signupForm,
BindingResult formBinding, HttpServletRequest request) {
if (formBinding.hasErrors()) {
UiUtil.addError(request, EntryError.SINGUP_VALIDATION_ERROR);
return DEFAULT_REDIRECT;
}
// rest of the method is not important
}
@Override
protected void configure(HttpSecurity http) throws Exception {
http
// standard configuration
.and()
.addFilterBefore(new RestSecurityFilter(authenticationManager()), UsernamePasswordAuthenticationFilter.class);
@Autowired
private RestAuthenticationProvider restAuthProvider;
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
auth.userDetailsService(userDetailsService()).passwordEncoder(passwordEncoder());
auth.authenticationProvider(restAuthProvider);
}
SignupFormnullRestSecurityFilterRestSecurityFilter- 已删除自定义身份验证提供程序-
auth.authenticationProvider(重新授权提供程序)。我认为这可能是一个多身份验证提供者的问题 - 将
添加到RestSecurityFilter
之前和之后UsernamePasswordAuthenticationFilter - 使
的doFilter方法只执行RestSecurityFilterchain.doFilter(请求、响应) - 我会使用SpringMVC拦截器,而不是
过滤器。这是一款更高级的spring mvc natvie - 对于RESTful服务,不应该使用“表单”术语,也不应该在出现错误时重定向(应该返回正确的错误响应)
- 签名中不需要
ModelAttribute
- 以下几点意见可能会有所帮助: