java - @AuthenticationPrincipal 抛出异常-6ren

java - @AuthenticationPrincipal 抛出异常

转载作者：行者123 更新时间：2023-11-30 10:16:34

这个测试项目因为我不知道如何在方法中注入(inject)@AuthenticationPrincipal 注释，我有一些问题，@AuthenticationPrincipal UserDetails 抛出异常

UserDetails userDetails = SecurityContextHolder.getContext().getAuthentication().getPrincipal()

工作没问题，但我想在方法中注入(inject)此注释，我该怎么做？

当我在方法中添加注解时抛出这个异常

org.springframework.web.util.NestedServletException: Request processing failed; nested exception is java.lang.IllegalStateException: No primary or default constructor found for interface org.springframework.security.core.userdetails.UserDetails

如何将 @AuthenticationPrincipal 注入(inject) MainControll 类中的索引方法？我该如何解决这种情况？

主控类

package com.sencerseven.springsecurityauth.controller;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.springframework.security.core.Authentication;
import org.springframework.security.core.annotation.AuthenticationPrincipal;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestParam;
import org.springframework.web.servlet.ModelAndView;



@Controller
public class MainController {

    @RequestMapping(value = {"/"})
    public ModelAndView index(@AuthenticationPrincipal UserDetails userDetails) {
        ModelAndView mv = new ModelAndView("index");

            mv.addObject("user", userDetails);

        return mv;
    }

    @RequestMapping(value = {"/login"})
    public ModelAndView loginPage(@RequestParam(name="error",required = false)String error,
            @RequestParam(name="logout",required = false)String logout) {
        ModelAndView mv = new ModelAndView("login");

        mv.addObject("userClickLoginPage",true);

        return mv;
    }

    @RequestMapping("/perform-logout")
    public String logout(HttpServletRequest httpServletRequest,HttpServletResponse httpServletResponse) {
        Authentication authentication = SecurityContextHolder.getContext().getAuthentication();

        if(authentication != null) {
            new SecurityContextLogoutHandler().logout(httpServletRequest, httpServletResponse, authentication);
        }

        return "redirect:/";
    }
}

这个类是我的主 Controller

WebSecurityConfig.class

package com.sencerseven.springsecurityauth.security;


import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;

@Configuration
@EnableWebSecurity
public class WebSecurityConfig {

    @Bean
    public static BCryptPasswordEncoder bCryptPasswordEncoder() {
        return new BCryptPasswordEncoder();
    }

    @Configuration
    public static class HomeConfigLogin extends WebSecurityConfigurerAdapter {
        @Autowired
        UserDetailsService userDetailsService;

        @Override
        protected void configure(AuthenticationManagerBuilder auth) throws Exception {
            auth.userDetailsService(userDetailsService).passwordEncoder(bCryptPasswordEncoder());
        }

        @Override
        protected void configure(HttpSecurity http) throws Exception {
            http.authorizeRequests().antMatchers("/**").permitAll().and()

                    .formLogin().loginPage("/login").usernameParameter("username").passwordParameter("password")
                    .defaultSuccessUrl("/", true).loginProcessingUrl("/login").and().logout().and().exceptionHandling()
                    .accessDeniedPage("/").and().csrf();
        }

    }
}

我的用户详细信息服务

package com.sencerseven.springsecurityauth.security;

import java.util.ArrayList;
import java.util.HashSet;
import java.util.List;
import java.util.Set;

import javax.transaction.Transactional;

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.User;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.stereotype.Service;

import com.sencerseven.springsecurityauth.dao.UserDAO;
import com.sencerseven.springsecurityauth.dto.Role;

@Service("userDetailsService")
public class MyUserDetailsService implements UserDetailsService {

    @Autowired
    private UserDAO userDAO;

    @Transactional
    @Override
    public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {

        com.sencerseven.springsecurityauth.dto.User user = userDAO.findByUserName(username);
        List<GrantedAuthority> authorities = buildUserAuthority(user.getRole());

        return buildUserForAuthentication(user, authorities);

    }

    private User buildUserForAuthentication(com.sencerseven.springsecurityauth.dto.User user,
            List<GrantedAuthority> authorities) {
        return new User(user.getUsername(), user.getPassword(), user.isEnabled(), true, true, true, authorities);
    }

    private List<GrantedAuthority> buildUserAuthority(Set<Role> userRoles) {

        Set<GrantedAuthority> setAuths = new HashSet<GrantedAuthority>();


        for (Role userRole : userRoles) {
            setAuths.add(new SimpleGrantedAuthority(userRole.getRole()));
        }

        List<GrantedAuthority> Result = new ArrayList<GrantedAuthority>(setAuths);

        return Result;
    }

}

用户类

package com.sencerseven.springsecurityauth.dto;

import java.io.Serializable;
import java.util.Set;

import javax.persistence.CascadeType;
import javax.persistence.Entity;
import javax.persistence.FetchType;
import javax.persistence.GeneratedValue;
import javax.persistence.GenerationType;
import javax.persistence.Id;
import javax.persistence.JoinColumn;
import javax.persistence.JoinColumns;
import javax.persistence.JoinTable;
import javax.persistence.ManyToMany;
import javax.persistence.Table;

@Entity
@Table(name = "User")
public class User implements Serializable {

    private static final long serialVersionUID = 1L;

    @Id
    @GeneratedValue(strategy = GenerationType.IDENTITY)
    private int id;

    private String username;

    private String password;

    private boolean enabled;

    private String email;

    @ManyToMany(fetch = FetchType.EAGER, cascade = CascadeType.ALL)
    @JoinTable(joinColumns = @JoinColumn(name = "user_id"), inverseJoinColumns = @JoinColumn(name = "role_id"))
    private Set<Role> role;

    public User() {

    }

    public User(String username, String password, boolean enabled, String email, Set<Role> role) {
        this.username = username;
        this.password = password;
        this.enabled = enabled;
        this.email = email;
        this.role = role;
    }

    public int getId() {
        return id;
    }

    public void setId(int id) {
        this.id = id;
    }

    public String getUsername() {
        return username;
    }

    public void setUsername(String username) {
        this.username = username;
    }

    public String getPassword() {
        return password;
    }

    public void setPassword(String password) {
        this.password = password;
    }

    public String getEmail() {
        return email;
    }

    public void setEmail(String email) {
        this.email = email;
    }

    public boolean isEnabled() {
        return enabled;
    }

    public void setEnabled(boolean enabled) {
        this.enabled = enabled;
    }

    public Set<Role> getRole() {
        return role;
    }

    public void setRole(Set<Role> role) {
        this.role = role;
    }

    @Override
    public String toString() {
        return "User [id=" + id + ", username=" + username + ", password=" + password + ", enabled=" + enabled
                + ", email=" + email + ", role=" + role + "]";
    }

}

角色类

package com.sencerseven.springsecurityauth.dto;

import java.io.Serializable;
import java.util.Set;

import javax.persistence.Entity;
import javax.persistence.FetchType;
import javax.persistence.GeneratedValue;
import javax.persistence.GenerationType;
import javax.persistence.Id;
import javax.persistence.JoinColumn;
import javax.persistence.JoinTable;
import javax.persistence.ManyToMany;
import javax.persistence.Table;

@Entity
@Table(name = "Role")
public class Role implements Serializable {

    private static final long serialVersionUID = 1L;

    @Id
    @GeneratedValue(strategy = GenerationType.AUTO)
    private int id;

    private String role;

    @ManyToMany(mappedBy = "role", fetch = FetchType.LAZY)
    private Set<User> user;

    public Role() {
    }

    public Role(String role, Set<User> user) {
        this.role = role;
        this.user = user;
    }

    public int getId() {
        return id;
    }

    public void setId(int id) {
        this.id = id;
    }

    public String getRole() {
        return role;
    }

    public void setRole(String role) {
        this.role = role;
    }

    public Set<User> getUser() {
        return user;
    }

    public void setUser(Set<User> user) {
        this.user = user;
    }

    @Override
    public String toString() {
        return "Role [id=" + id + ", role=" + role + ", user=" + user + "]";
    }

}

最佳答案

如果您使用 WebMvcConfigurationSupport 和 @AuthenticationPrincipal，则必须添加 AuthenticationPrincipalArgumentResolver:

public class WebMvcConfig extends WebMvcConfigurationSupport {

...

@Override
protected void addArgumentResolvers(List<HandlerMethodArgumentResolver> argumentResolvers) {
   argumentResolvers.add(new AuthenticationPrincipalArgumentResolver());
}

关于java - @AuthenticationPrincipal 抛出异常，我们在Stack Overflow上找到一个类似的问题： https://stackoverflow.com/questions/50011797/

文章推荐： javascript - 可选参数和默认值

文章推荐： swift - 多次使用相同的闭包参数将无法编译

文章推荐： javascript - 如何修复 Prototype 与 Highchart 的冲突？

文章推荐： swift - 照片框架 : contentMode within RequestImageForAsset method

java - 在 Java 中，为什么 FileWriter 抛出 IOException 而 FileOutputStream 抛出 FileNotFoundException 的原因完全相同
来自 java docs 公共(public) FileWriter(String fileName) 抛出 IOException 抛出: IOException - 如果指定的文件存在但它是目录而
Cassandra 抛出 NoHostAvailableException
我使用以下代码将我的 .net 客户端(基于 CQL)连接到 3 节点 Cassandra 集群。我以 30 条记录/秒的速度(从 RabbitMQ)获取数据，并且它们顺利地存储在 cassandra
Java 抛出 NoSuchElementException
如果在读取文件时缺少字段，我应该捕获 NoSuchElementException。如果缺少一个字段，我只需要跳到文件的下一行。我的问题是，我在哪里实现我的 try/catch 代码来做到这一点？这是
DotnetopenAuth 抛出“ProtocolException
我正在尝试使用 ASP.NET MVC 实现 OpeinID 登录。我正在尝试按照 http://blog.nerdbank.net/2008/04/add-openid-login-support-
java - 抛出 SAXException
学习使用 Java 进行 xml 解析，并且正在编写一个测试程序来尝试各种东西。所有测试 System.out.println() 都是我在控制台中所期望的，除了 childElement 返回 [n
java - 抛出 ClassCastException
我正在尝试使用 SwingUtilities 创建 JFrame Thread tt = new Thread(new Runnable() { public void run
C# % 抛出 DivideByZeroException
关闭。这个问题是not reproducible or was caused by typos .它目前不接受答案。这个问题是由于错别字或无法再重现的问题引起的。虽然类似的问题可能是on-topi
c# - 抛出 AmbiguousMatchException
我写了这段代码: MethodInfo method2 = typeof(IntPtr).GetMethod( "op_Explicit", Bind
Java 抛出 InputMismatchException
我开始学习 Java，并且正在根据书本做一些练习。在执行此操作时，我遇到了以下错误:线程“main”java.util.InputMismatchException 中出现异常。我正在编写一个简单的程
Java 抛出 NumberFormatException
我有一个文本文件，其中前两行是整数 m 和 n，然后有 m 行，每行都有 n 管道分隔值。我编写了一个程序，读取文件并使用文件中的值创建 m*n 数组，它工作了无数次，然后突然，使用相同的代码，使用相
java - 抛出 NoSuchBeanDefinitionException
所以我尝试使用在另一个类中生成的 bean 以在主应用程序中使用 package com.simon.spring.basics.properties; import org.spri
java - 抛出 InstantiationException
我还没有完成这个应用程序，但我希望在我的手机上看到它的样子。但是，它会强制关闭并引发 InstantiationException。 logcat 异常: 09-19 20:13:47.987: D/
swift - UIHostingController 抛出
我想从 UIViewController 加载一个基于 SwiftUI 的 View ，该 View 读取包本地的 json。仅 swiftUI 项目中的代码和绑定(bind)工作正常，当我利用 UI
java - 抛出 SocketTimeoutException
'java.net.SocketTimeoutException:连接超时' 循环一段时间后我收到此错误。为什么我会收到 SocketTimeoutException？我该如何修复这个错误？ @Ove
c# - 抛出 ArgumentNullException
当有 null 值时抛出 ArgumentNullException() 是个好主意吗？ This thread 没有提到在 null 上抛出的最明显的异常。谢谢最佳答案 ArgumentNull
c# - 抛出 NullReferenceException？
我得到这个异常: NullReferenceException Object reference not set to an instance of an object at Namespace
java - 抛出 UnsupportedOperationException
所以其中一个方法的描述如下: public BasicLinkedList addToFront(T data) This operation is invalid for a sorted list
JavaDocs 抛出 IllegalArgumentException
我正在使用 Intellij Idea，当我去生成 JavaDocs(通过工具 -> 生成 JavaDoc)时，我抛出了一个 IllegealArgumentException，没有关于发生了什么问题
C++ 程序意外阻塞/抛出
我正在学习 C++ 中的互斥锁，但以下代码(摘自 N. Josuttis 的“C++ 标准库”)有问题。我不明白为什么它会阻塞/抛出除非我在主线程中添加this_thread::sleep_for(
JavaFX 抛出 ArrayIndexOutOfBoundsException
我正在试验 JavaFX 标签和组，通过鼠标拖动将它们移动到屏幕上。新节点从一些线程添加到动画组。但是，有时我会突然看到以下异常 - 我假设，当某些节点重叠时。但是不知道是什么问题……因为不涉及我的代

行者123

个人简介

我是一名优秀的程序员,十分优秀！

作者热门文章

滴滴打车优惠券免费领取

全站热门文章

首页

博学

6Ren·AI

商城