tags:

views:

132

answers:

1
Q: 

[Spring Security 3] I want to setting within DB-URL and Role

what's the problem????

    package com.sqlmap;

import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.Collection;
import java.util.LinkedHashMap;
import java.util.List;
import java.util.Map;

import javax.sql.DataSource;

import org.springframework.beans.factory.FactoryBean;
import org.springframework.jdbc.core.support.JdbcDaoSupport;
import org.springframework.jdbc.object.MappingSqlQuery;
import org.springframework.security.access.ConfigAttribute;
import org.springframework.security.access.ConfigAttributeEditor;
import org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource;
import org.springframework.security.web.access.intercept.FilterInvocationSecurityMetadataSource;
import org.springframework.security.web.access.intercept.RequestKey;
import org.springframework.security.web.util.AntUrlPathMatcher;
import org.springframework.security.web.util.UrlMatcher;

public class JdbcFilterInvocationDefinitionSourceFactoryBean extends
  JdbcDaoSupport implements FactoryBean {
 private String resourceQuery;

 public boolean isSingleton() {
  return true;
 }

 public Class getObjectType() {
  return FilterInvocationSecurityMetadataSource.class;
 }

 public Object getObject() {

  return new DefaultFilterInvocationSecurityMetadataSource(this.getUrlMatcher(), this.buildRequestMap());
 }


 protected Map<String, String> findResources() {
  ResourceMapping resourceMapping = new ResourceMapping(getDataSource(),
    resourceQuery);

  Map<String, String> resourceMap = new LinkedHashMap<String, String>();

  for (Resource resource : (List<Resource>) resourceMapping.execute()) {
   String url = resource.getUrl();
   String role = resource.getRole();

   if (resourceMap.containsKey(url)) {
    String value = resourceMap.get(url);
    resourceMap.put(url, value + "," + role);
   } else {
    resourceMap.put(url, role);
   }
  }

  return resourceMap;
 }

 protected LinkedHashMap buildRequestMap() {
  LinkedHashMap<RequestKey, Collection> requestMap = null;
  requestMap = new LinkedHashMap<RequestKey, Collection>();

  ConfigAttributeEditor editor = new ConfigAttributeEditor();

  Map<String, String> resourceMap = this.findResources();

  for (Map.Entry<String, String> entry : resourceMap.entrySet()) {
   RequestKey key = new RequestKey(entry.getKey(), null);
   editor.setAsText(entry.getValue());
   Object value = editor.getValue();
   Object source = editor.getSource();
   String[] tags = editor.getTags();
   requestMap.put(key, (Collection) editor.getValue());
  }


  return requestMap;
 }

 protected UrlMatcher getUrlMatcher() {
  return new AntUrlPathMatcher();
 }

 public void setResourceQuery(String resourceQuery) {
  this.resourceQuery = resourceQuery;
 }

 public class Resource {
  private String url;
  private String role;

  public Resource(String url, String role) {
   this.url = url;
   this.role = role;
  }

  public String getUrl() {
   return url;
  }

  public String getRole() {
   return role;
  }
 }

 public class ResourceMapping extends MappingSqlQuery {
  protected ResourceMapping(DataSource dataSource, String resourceQuery) {
   super(dataSource, resourceQuery);
   compile();
  }
  protected Object mapRow(ResultSet rs, int rownum) throws SQLException {
   String url = rs.getString(1);
   String role = rs.getString(2);
   Resource resource = new Resource(url, role);

   return resource;
  }
 }

}

Error Log!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

2010-07-14 00:05:10,323 ERROR [main] ContextLoader - Context initialization failed org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'filterSecurityInterceptor' defined in class path resource [gaia-generated-security-context.xml]: Invocation of init method failed; nested exception is org.springframework.security.authentication.AuthenticationCredentialsNotFoundException: An Authentication object was not found in the SecurityContext at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.initializeBean(AbstractAutowireCapableBeanFactory.java:1403) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:513) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:450) at org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:290) at org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222) at org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:287) at org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:189) at org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:562) at org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:871) at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:423) at org.springframework.web.context.ContextLoader.createWebApplicationContext(ContextLoader.java:272) at org.springframework.web.context.ContextLoader.initWebApplicationContext(ContextLoader.java:196) at org.springframework.web.context.ContextLoaderListener.contextInitialized(ContextLoaderListener.java:47) at org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:4135) at org.apache.catalina.core.StandardContext.start(StandardContext.java:4630) at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:791) at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:771) at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:546) at org.apache.catalina.startup.HostConfig.deployDirectory(HostConfig.java:1041) at org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.java:964) at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:502) at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1277) at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:321) at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1053) at org.apache.catalina.core.StandardHost.start(StandardHost.java:785) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1045) at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:445) at org.apache.catalina.core.StandardService.start(StandardService.java:519) at org.apache.catalina.core.StandardServer.start(StandardServer.java:710) at org.apache.catalina.startup.Catalina.start(Catalina.java:581) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289) at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414) Caused by: org.springframework.security.authentication.AuthenticationCredentialsNotFoundException: An Authentication object was not found in the SecurityContext at org.springframework.security.access.intercept.AbstractSecurityInterceptor.credentialsNotFound(AbstractSecurityInterceptor.java:321) at org.springframework.security.access.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:195) at org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor.invoke(MethodSecurityInterceptor.java:64) at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:172) at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:202) at $Proxy112.supports(Unknown Source) at org.springframework.security.access.intercept.AbstractSecurityInterceptor.afterPropertiesSet(AbstractSecurityInterceptor.java:126) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.invokeInitMethods(AbstractAutowireCapableBeanFactory.java:1460) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.initializeBean(AbstractAutowireCapableBeanFactory.java:1400) ... 36 more 2010. 7. 14 오전 12:05:10 org.apache.catalina.core.StandardContext listenerStart 심각: Exception sending context initialized event to listener instance of class org.springframework.web.context.ContextLoaderListener org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'filterSecurityInterceptor' defined in class path resource [gaia-generated-security-context.xml]: Invocation of init method failed; nested exception is org.springframework.security.authentication.AuthenticationCredentialsNotFoundException: An Authentication object was not found in the SecurityContext at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.initializeBean(AbstractAutowireCapableBeanFactory.java:1403) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:513) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:450) at org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:290) at org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222) at org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:287) at org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:189) at org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:562) at org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:871) at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:423) at org.springframework.web.context.ContextLoader.createWebApplicationContext(ContextLoader.java:272) at org.springframework.web.context.ContextLoader.initWebApplicationContext(ContextLoader.java:196) at org.springframework.web.context.ContextLoaderListener.contextInitialized(ContextLoaderListener.java:47) at org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:4135) at org.apache.catalina.core.StandardContext.start(StandardContext.java:4630) at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:791) at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:771) at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:546) at org.apache.catalina.startup.HostConfig.deployDirectory(HostConfig.java:1041) at org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.java:964) at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:502) at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1277) at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:321) at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1053) at org.apache.catalina.core.StandardHost.start(StandardHost.java:785) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1045) at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:445) at org.apache.catalina.core.StandardService.start(StandardService.java:519) at org.apache.catalina.core.StandardServer.start(StandardServer.java:710) at org.apache.catalina.startup.Catalina.start(Catalina.java:581) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289) at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414) Caused by: org.springframework.security.authentication.AuthenticationCredentialsNotFoundException: An Authentication object was not found in the SecurityContext at org.springframework.security.access.intercept.AbstractSecurityInterceptor.credentialsNotFound(AbstractSecurityInterceptor.java:321) at org.springframework.security.access.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:195) at org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor.invoke(MethodSecurityInterceptor.java:64) at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:172) at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:202) at $Proxy112.supports(Unknown Source) at org.springframework.security.access.intercept.AbstractSecurityInterceptor.afterPropertiesSet(AbstractSecurityInterceptor.java:126) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.invokeInitMethods(AbstractAutowireCapableBeanFactory.java:1460) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.initializeBean(AbstractAutowireCapableBeanFactory.java:1400) ... 36 more 2010. 7. 14 오전 12:05:10 org.apache.catalina.core.StandardContext start 심각: Error listenerStart 2010. 7. 14 오전 12:05:10 org.apache.catalina.core.StandardContext start 심각: Context [/gaia] startup failed due to previous errors 2010. 7. 14 오전 12:05:10 org.apache.catalina.core.ApplicationContext log 정보: Closing Spring root WebApplicationContext 2010. 7. 14 오전 12:05:10 org.apache.catalina.loader.WebappClassLoader clearReferencesJdbc 심각: The web application [/gaia] registered the JBDC driver [com.mysql.jdbc.Driver] but failed to unregister it when the web application was stopped. To prevent a memory leak, the JDBC Driver has been forcibly unregistered. 2010. 7. 14 오전 12:05:10 org.apache.catalina.loader.WebappClassLoader clearReferencesThreads 심각: The web application [/gaia] appears to have started a thread named [Atomikos:0] but has failed to stop it. This is very likely to create a memory leak. 2010. 7. 14 오전 12:05:10 org.apache.catalina.loader.WebappClassLoader clearThreadLocalMap 심각: The web application [/gaia] created a ThreadLocal with key of type [java.lang.ThreadLocal] (value [java.lang.ThreadLocal@6c7f78]) and a value of type [org.springframework.security.core.context.SecurityContextImpl] (value [org.springframework.security.core.context.SecurityContextImpl@ffffffff: Null authentication]) but failed to remove it when the web application was stopped. This is very likely to create a memory leak.

I don't know this problmen.~ help me~~

A: 

here definition file.

<!-- ******************************************************************** -->
<!-- This context file was generated and is not intended to be changed manually. -->
<!-- ******************************************************************** -->
<context:annotation-config />
<http auto-config="true" access-denied-page="/pages/notAuth.jsp">
    <intercept-url pattern='/pages/login.jsp' filters='none'/>
    <intercept-url pattern="/" access="IS_AUTHENTICATED_REMEMBERED" />
    <intercept-url pattern="/admin.jsp" access="ROLE_ADMIN" />
    <intercept-url pattern="/**" access="ROLE_USER" />
    <form-login login-page="/pages/login.jsp" authentication-failure-url="/pages/login.jsp?login_error=true" always-use-default-target="true" default-target-url="/pages/login.jsp" /> 
    <logout logout-success-url="/pages/logout-redirect.jsp" invalidate-session="true" />
    <remember-me key="gaiaRMKey" user-service-ref="userDetailsService" />
</http>


<beans:bean id="filterSecurityInterceptor"
    class="org.springframework.security.web.access.intercept.FilterSecurityInterceptor">
    <beans:property name="authenticationManager" ref="authenticationManager"></beans:property>
    <beans:property name="accessDecisionManager" ref="coolAccessDecisionManagerBean" />
    <beans:property name="objectDefinitionSource" ref="filterInvocationDefinitionSource"></beans:property>
</beans:bean>


<beans:bean id="filterInvocationDefinitionSource"
    class="com.sqlmap.JdbcFilterInvocationDefinitionSourceFactoryBean">
    <beans:property name="dataSource" ref="springSecurityDataSource"/>
    <beans:property name="resourceQuery" value="
        select re.res_string,r.name
          from role r
          join resc_role rr
            on r.id=rr.role_id
          join resc re
            on re.id=rr.resc_id
      order by priority
    "/>
</beans:bean>


<beans:bean id="coolAccessDecisionManagerBean" class="com.sqlmap.AccessDecisionManager">
</beans:bean>


<authentication-manager alias="authenticationManager" >
<authentication-provider user-service-ref='userDetailsService' >
    <password-encoder hash="plaintext"/>
</authentication-provider>
</authentication-manager>


<beans:bean id="userDetailsService" class="org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl">
    <beans:property name="rolePrefix" value="ROLE_" />
    <beans:property name="dataSource" ref="springSecurityDataSource" />
    <beans:property name="usersByUsernameQuery" value="select username,password,status as enabled  from user where username=?" />
    <beans:property name="authoritiesByUsernameQuery" value="select u.username,r.name as authority  from user u  join user_role ur    on u.id=ur.user_id  join role r    on r.id=ur.role_id where u.username=?" />
</beans:bean>
 2010-07-13 15:17:44

related questions

Java Frameworks War: Spring and Hibernate
Does having many unused beans in a Spring Bean Context waste significant resources?
Internationalization sitemesh
What are the best books for Spring and Spring MVC?
Can I compose a Spring Configuration File from smaller ones?
How do you maintain java webapps in different staging environments?
Best resources to prepare for the "Spring Framework Certification"
What is the best documentation for snapshots and flow repositories in Spring Web Flow?
How do you authenticate against an Active Directory server using Spring Security?
Where can I find a good introductory tutorial for Spring?
JPA Multiple Transaction Managers
Map of Enums and dependency injection in Spring 2.5
Should I use EJB3 or Spring for my business layer?
How do I register a custom type converter in Spring?
Accessing a bean with a dot(.) in its ID
How do I create a spring bean for a Java double primitive?
Validation framework for business app built on Spring 2.5
Some Tomcat webapps not opening
How do I return a 403 Forbidden in Spring MVC?
Aspectj doesn't catch all events in spring framework?
How do you use WebServiceMessageDrivenBean in Spring-WS?
Template Engines for Spring Framework
What's the best way to get started with OSGI?
What OSS project should I look at if I need to do Spring friendly WorkFlow?
What's your "best practice" for the first Java EE Spring project?