小编use*_*706的帖子

如何使用Java配置表示Spring Security"自定义过滤器"？

Spring Security <custom-filter>标记的等效Java配置是什么？

<http>
  <custom-filter position="FORM_LOGIN_FILTER" ref="myFilter"/>
</http>

Run Code Online (Sandbox Code Playgroud)

我试过了

http.addFilter( new MyUsernamePasswordAuthenticationFilter() )

Run Code Online (Sandbox Code Playgroud)

类扩展默认过滤器,但它始终使用默认过滤器formLogin.

我的过滤器:

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.springframework.security.authentication.AuthenticationServiceException;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.Authentication; 
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;

public class MyUsernamePasswordAuthenticationFilter extends UsernamePasswordAuthenticationFilter{

    // proof of concept of how the http.addFilter() works

    @Override
    public Authentication attemptAuthentication(HttpServletRequest request, HttpServletResponse response)
            throws AuthenticationException {
        if (!request.getMethod().equals("POST")) {
            throw new AuthenticationServiceException("Authentication method not supported: " + request.getMethod());
        }

        System.out.println("running my own version of UsernmePasswordFilter ... ");

        String username = …

Run Code Online (Sandbox Code Playgroud)

java spring-security spring-java-config

use*_*706

2014 07-23

29
推荐指数

2
解决办法

5万
查看次数

标签统计

java ×1

spring-java-config ×1

spring-security ×1

如何使用Java配置表示Spring Security"自定义过滤器"？

标签 统计

小编use_706的帖子

标签统计