Java jersey 2.2和Spring Security 3依赖项?
我使用Jersey 2.2实现了一个REST服务,并希望保护它。 我坐过ApacheShiro的板凳,没有任何重大问题。 现在,我想用SpringSecurity3做同样的原型(基本http安全性) 问题是,我真的迷失在混合这两个框架所需的依赖关系之间。(球衣2.2没有春季球衣) 因此,如果有人能给我提供一个工作示例,说明maven项目中的任何spring-sec3/jersey2.2集成,我将不胜感激Java jersey 2.2和Spring Security 3依赖项?,java,rest,spring-security,jersey-2.0,Java,Rest,Spring Security,Jersey 2.0,我使用Jersey 2.2实现了一个REST服务,并希望保护它。 我坐过ApacheShiro的板凳,没有任何重大问题。 现在,我想用SpringSecurity3做同样的原型(基本http安全性) 问题是,我真的迷失在混合这两个框架所需的依赖关系之间。(球衣2.2没有春季球衣) 因此,如果有人能给我提供一个工作示例,说明maven项目中的任何spring-sec3/jersey2.2集成,我将不胜感激 谢谢大家,自从问题发布后,我终于在一个应用程序中成功解决了: 泽西岛2.2 弹簧第3.1节
谢谢大家,自从问题发布后,我终于在一个应用程序中成功解决了:
- 泽西岛2.2
- 弹簧第3.1节
- guice 3.0
<properties>
<spring.version>3.1.0.RELEASE</spring.version>
<jersey.version>2.2</jersey.version>
<guice.version>3.0</guice.version>
<hk2.version>2.2.0-b14</hk2.version>
</properties>
<dependencies>
<dependency>
<groupId>org.glassfish.jersey.containers</groupId>
<artifactId>jersey-container-servlet</artifactId>
<version>${jersey.version}</version>
</dependency>
<dependency>
<groupId>org.glassfish.jersey.core</groupId>
<artifactId>jersey-client</artifactId>
<version>${jersey.version}</version>
</dependency>
<dependency>
<groupId>org.codehaus.jackson</groupId>
<artifactId>jackson-mapper-asl</artifactId>
<version>1.9.12</version>
</dependency>
<dependency>
<groupId>com.fasterxml.jackson.jaxrs</groupId>
<artifactId>jackson-jaxrs-json-provider</artifactId>
<version>2.2.1</version>
</dependency>
<dependency>
<groupId>com.google.inject.extensions</groupId>
<artifactId>guice-servlet</artifactId>
<version>${guice.version}</version>
</dependency>
<dependency>
<groupId>org.glassfish.hk2</groupId>
<artifactId>guice-bridge</artifactId>
<version>${hk2.version}</version>
</dependency>
<!-- SECURITY (start) -->
<dependency>
<groupId>org.springframework.security</groupId>
<artifactId>spring-security-core</artifactId>
<version>${spring.version}</version>
</dependency>
<dependency>
<groupId>org.springframework.security</groupId>
<artifactId>spring-security-config</artifactId>
<version>${spring.version}</version>
</dependency>
<dependency>
<groupId>org.springframework.security</groupId>
<artifactId>spring-security-web</artifactId>
<version>${spring.version}</version>
</dependency>
<dependency>
<groupId>org.springframework.security</groupId>
<artifactId>spring-security-ldap</artifactId>
<version>${spring.version}</version>
</dependency>
</dependencies>
我还实现了一个RESTAPI。首先,我尝试了Jersey的Spring安全性,但我很难让它们一起工作,所以我放弃了,只使用Spring构建api。我对结果很满意。该api现在已经有几个月的使用寿命,并且运行良好。
<web-app version="2.5" xmlns="http://java.sun.com/xml/ns/javaee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns /javaee/web-app_2_5.xsd">
<!-- Filter to secure Jersey (JAX-RS) services -->
<context-param>
<param-name>contextConfigLocation</param-name>
<param-value>/WEB-INF/applicationContext-security.xml</param-value>
</context-param>
<listener>
<listener-class>org.springframework.web.context.ContextLoaderListener</listener- class>
</listener>
<!-- fist arm the spring security filters --->
<filter>
<filter-name>springSecurityFilterChain</filter-name>
<filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
</filter>
<filter-mapping>
<filter-name>springSecurityFilterChain</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- then filter all URLs through Guice Servlet -->
<filter>
<filter-name>guiceFilter</filter-name>
<filter-class>com.google.inject.servlet.GuiceFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>guiceFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<listener>
<listener-class>org.whatever.myapp.inject.GuiceServletConfig</listener-class>
</listener>
<!-- finaly define our rest app mapping -->
<servlet>
<servlet-name>JerseyServletContainer</servlet-name>
<servlet-class>org.glassfish.jersey.servlet.ServletContainer</servlet-class>
<init-param>
<!-- Jersey would scan the specified package and register available resources -->
<param-name>jersey.config.server.provider.packages</param-name>
<param-value>org.whatever.myapp.interfaces</param-value>
</init-param>
<init-param>
<param-name>javax.ws.rs.Application</param-name>
<param-value>org.whatever.myapp.inject.CurrentResourceConfig</param-value>
</init-param>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet-mapping>
<servlet-name>JerseyServletContainer</servlet-name>
<url-pattern>/webapi/*</url-pattern>
</servlet-mapping>
</web-app>
package org.whatever.myapp.inject.CurrentResourceConfig;
public class CurrentResourceConfig extends ResourceConfig
{
@Inject
public CurrentResourceConfig(ServiceLocator serviceLocator)
{
GuiceBridge.getGuiceBridge().initializeGuiceBridge(serviceLocator);
GuiceIntoHK2Bridge guiceBridge = serviceLocator.getService(GuiceIntoHK2Bridge.class);
guiceBridge.bridgeGuiceInjector(GuiceServletConfig.getInjectorInstance());
}
}
}