所有提供程序之后的 Spring Security java.lang.StackOverflowError 异常 [英] Spring Security java.lang.StackOverflowError exception after all providers
问题描述
环境:
- 春季 4.1.6
- Spring 安全 4.0.1
我有 2 个身份验证提供程序 - 一个访问 ActiveDirectory,另一个访问我创建的自定义数据库提供程序.以处于这两种环境中的任何一种的用户身份登录都可以正常工作.用户已通过身份验证,应用程序将继续运行.
I have 2 authentication providers - one that hits ActiveDirectory, and then one that hits a custom database provider I've created. Logging in as a user that is in either of those environments works perfectly. The user is authenticated and the app continues.
但是,当输入无效用户并且两个提供商都无法进行身份验证时,我会在页面上收到此异常:
However, when an invalid user is entered and neither provider is able to authenticate, I get this exception on the page:
java.lang.StackOverflowError
org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter$UserDetailsServiceDelegator.loadUserByUsername(WebSecurityConfigurerAdapter.java:393)
org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter$UserDetailsServiceDelegator.loadUserByUsername(WebSecurityConfigurerAdapter.java:394)
org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter$UserDetailsServiceDelegator.loadUserByUsername(WebSecurityConfigurerAdapter.java:394)
org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter$UserDetailsServiceDelegator.loadUserByUsername(WebSecurityConfigurerAdapter.java:394)
这是我的 WebSecurityConfigurerAdapter 配置:
Here is my WebSecurityConfigurerAdapter configuration:
@Override
protected void configure(HttpSecurity http) throws Exception {
http
.csrf().disable()
.formLogin().loginPage("/login").failureUrl("/login?error").defaultSuccessUrl("/overview").permitAll()
.and()
.logout().logoutSuccessUrl("/login?logout").permitAll()
.and()
.authorizeRequests()
.antMatchers("/resources/**").permitAll()
.antMatchers("/favicon.ico").permitAll()
.antMatchers("/**").hasRole("AUTH");
}
@Override
protected void configure(AuthenticationManagerBuilder authManagerBuilder) throws Exception {
authManagerBuilder
.authenticationProvider(activeDirectoryLdapAuthenticationProvider())
.userDetailsService(userDetailsService());
authManagerBuilder
.authenticationProvider(databaseAuthenticationProvider())
.userDetailsService(userDetailsService());
}
@Bean
public ActiveDirectoryLdapAuthenticationProvider activeDirectoryLdapAuthenticationProvider() {
ActiveDirectoryLdapAuthenticationProvider provider = new ActiveDirectoryLdapAuthenticationProvider(DOMAIN, URL);
provider.setConvertSubErrorCodesToExceptions(true);
provider.setUseAuthenticationRequestCredentials(true);
provider.setUserDetailsContextMapper(userDetailsContextMapper());
return provider;
}
@Bean
public UserDetailsContextMapper userDetailsContextMapper() {
UserDetailsContextMapper contextMapper = new MyUserDetailsContextMapper();
return contextMapper;
}
@Bean
public MyDatabaseAuthenticationProvider databaseAuthenticationProvider() {
return new MyDatabaseAuthenticationProvider();
}
MyDatabaseAuthenticationProvider"或MyUserDetailsContextMapper"类实际上没有什么特别之处,除了一些用于映射和查找用户的自定义逻辑.
There's really nothing special in the "MyDatabaseAuthenticationProvider" or "MyUserDetailsContextMapper" classes except for some custom logic for mapping and looking up users.
应用程序没有崩溃,但显然不是我想向用户显示的页面.:)
The app doesn't crash, but obviously not the page I want to show the user. :)
关于如何摆脱 StackOverflowError 的任何想法?
Any thoughts on how I can get rid of the StackOverflowError?
推荐答案
我遇到了同样的问题,这是我的解决方案:
I had the same problem, this was the solution for me:
@Override
protected void configure(AuthenticationManagerBuilder
authManagerBuilder) throws Exception {
...
.userDetailsService(userDetailsService());
...
}
userDetailsService 后面的括号的问题 - 删除它们并且它按预期工作.从您的代码片段中,我无法确定您从何处获得 userDetailsService,对我而言,我拥有它 @Autowired.
The problem where the brackets after userDetailsService - removed them and it works as expected. From your code snippet I can't be sure where you get the userDetailsService from, for me I had it @Autowired.
这篇关于所有提供程序之后的 Spring Security java.lang.StackOverflowError 异常的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!