为什么选择j_spring_security_check 404？

Question

为什么选择j_spring_security_check 404？

我正在尝试使用Spring安全性实现基于表单的身份验证.重定向工作正常:我的主页工作正常, http://localhost:8080/master/admin我被重定向到登录页面(http://localhost:8080/master/login/):

    <form action="j_spring_security_check" method="POST">
        <label for="username">User Name:</label>
        <input id="username" name="j_username" type="text"/>
        <label for="password">Password:</label>
        <input id="password" name="j_password" type="password"/>
        <input type="submit" value="Log In"/>
      </form>

but when I submit I get 404 on address: `http://localhost:8080/master/login/j_spring_security_check`

Run Code Online (Sandbox Code Playgroud)

这是我的配置web.xml:

    <context-param>
        <param-name>contextConfigLocation</param-name>
        <param-value>/WEB-INF/spring/root-context.xml</param-value>
    </context-param>
    <filter>
        <filter-name>springSecurityFilterChain</filter-name>
        <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
    </filter>
    <filter-mapping>
        <filter-name>springSecurityFilterChain</filter-name>
        <url-pattern>/*</url-pattern>
    </filter-mapping>

    <!-- Creates the Spring Container shared by all Servlets and Filters -->
    <listener>
        <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
    </listener>

    <!-- Processes application requests -->
    <servlet>
        <servlet-name>appServlet</servlet-name>
        <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
        <init-param>
            <param-name>contextConfigLocation</param-name>
            <param-value>/WEB-INF/spring/appServlet/servlet-context.xml</param-value>
        </init-param>
        <load-on-startup>1</load-on-startup>
    </servlet>
    <servlet-mapping>
        <servlet-name>appServlet</servlet-name>
        <url-pattern>/</url-pattern>
    </servlet-mapping>

Run Code Online (Sandbox Code Playgroud)

我的root-context.xml(我重定向谷歌,以便我知道页面存在于上下文中)

<sec:http auto-config="true">
    <sec:intercept-url pattern="/admin/**" access="ROLE_USER" />
    <sec:form-login login-page="/login/"
        authentication-failure-url="http://www.google.com" default-target-url="http://www.google.com" />
    <sec:logout logout-success-url="/logout" />
</sec:http>

<sec:authentication-manager>
    <sec:authentication-provider>
        <sec:user-service>
            <sec:user name="test" password="test" authorities="ROLE_USER, ROLE_ADMIN" />
            <sec:user name="testuser" password="testuserpassword"
                authorities="ROLE_USER" />
        </sec:user-service>
    </sec:authentication-provider>
</sec:authentication-manager>

Run Code Online (Sandbox Code Playgroud)

我已经失去了很多时间,尝试不同的组合,但没有运气.任何帮助表示赞赏!

Answer 1

Jos*_*ore 5

我认为这可能是您的安全表格应该指出的事实

/master/j_spring_security_check

Run Code Online (Sandbox Code Playgroud)

归档时间：	11 年，10 月前
查看次数：	13738 次
最近记录：	9 年，4 月前