我使用Spring Security 3.2.0.RELEASE .
我目前正在将应用程序的基于 XML 的 Spring Security 配置迁移到基于 JavaConfig 的 Spring Security 配置。
在旧security.xml中,我配置了一个基于 JDBC 的UserDetailsService,如下所示:
<authentication-manager alias="authenticationManager">
<authentication-provider>
<password-encoder ref="passwordEncoder" />
<!-- parsed by JdbcUserServiceBeanDefinitionParser -->
<!-- the following creates a JdbcUserDetailsManager -->
<jdbc-user-service data-source-ref="dataSource" />
</authentication-provider>
</authentication-manager>
除其他影响外,上面的 XML 配置自动注册了一个 JdbcUserDetailsManager 类型的 Spring Bean (UserDetailsService 的子类型),我可以将其注入到其他组件中,如下所示:
@Service
public class MyCustomService {
@Inject
private JdbcUserDetailsManager judm;
//...
}
我对上述XML的基于JavaConfig的改编如下所示:
@Configuration
// @ImportResource("classpath:to/no/longer/needed/security.xml")
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
auth
.jdbcAuthentication()
.passwordEncoder( somePasswordEncoder )
.dataSource( someDataSource );
}
// ...
}
上面的JavaConfig配置似乎没有另外注册JdbcUserDetailsManager类型的Spring Bean。这意味着MyCustomService没有被注入这样的豆子,因此我得到了一个NoSuchBeanDefinitionException:
org.springframework.beans.factory.NoSuchBeanDefinitionException: No qualifying bean of type [org.springframework.security.provisioning.JdbcUserDetailsManager] found for dependency: expected at least 1 bean which qualifies as autowire candidate for this dependency. Dependency annotations: {@javax.inject.Inject()}
使用 JavaConfig 方法,我怎样才能获得类型 JdbcUserDetailsManager 的 bean?
您是否尝试过添加
@Bean
public JdbcUserDetailsManager jdbcUserDetailsManager(){
return new JdbcUserDetailsManager();
}
到你的 SecurityConfig 类?