Clever Geek Handbook

Spring secutiry custom xhtml. authenticationManager is always null

I need to create a custom xhtml login form. Configure spring without xml annotations but authenticationManager is always null

Login form

<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml"
xmlns:th="http://www.thymeleaf.org" xmlns:p="http://primefaces.org/ui"
xmlns:h="http://java.sun.com/jsf/html"
xmlns:f="http://java.sun.com/jsf/core"
xmlns:sec="http://www.thymeleaf.org/thymeleaf-extras-springsecurity3">
<head>
<title>Spring Security Example</title>
</head>
<body>

<h:form prependId="false"   >
    <h:outputLabel value="User Id: " for="j_username" />
    <h:inputText id="j_username" label="User Id" required="true"
        value="#{loginBean.userName}" />
    <h:outputLabel value="Password: " for="j_password" />
    <h:inputSecret id="j_password" value="#{loginBean.password}" />
    <h:commandButton value="Submit" action="#{loginBean.login}" />
    </h:form>
    </body>
    </html>

Configuration

@Configuration
@EnableWebSecurity
@EnableGlobalAuthentication
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {

@Override
protected void configure(HttpSecurity http) throws Exception {
    http.csrf().disable().authorizeRequests()
            .antMatchers("/home", "/css/**", "/**/*.css*", "/").permitAll()
            .anyRequest().authenticated().and().formLogin()
            .loginPage("/login").permitAll().and().logout()
            .logoutUrl("/logout").invalidateHttpSession(true)
            .logoutSuccessUrl("/");
}
@Override
protected void configure(AuthenticationManagerBuilder auth)
        throws Exception {
    auth.inMemoryAuthentication().withUser("user").password("password")
            .roles("USER");
}

@Bean
public AuthenticationManager authenticationManager() throws Exception {
    return super.authenticationManagerBean();

}
}

Want @Autowired

in the LoginBean class

 import java.io.IOException;
 import java.io.Serializable;

 import javax.faces.bean.ManagedProperty;
 import javax.inject.Named;
 import javax.servlet.ServletException;

 import org.springframework.context.annotation.Scope;
 import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
 import org.springframework.security.core.Authentication;
 import org.springframework.security.core.AuthenticationException;
 import org.springframework.security.core.context.SecurityContextHolder;
 import org.springframework.stereotype.Component;
@Scope("request")
@Component
@Named(value="loginBean")
public class LoginBean implements Serializable {


@Autowired
private AuthenticationManager authenticationManager;

private static final long serialVersionUID = 1L;
private String userName;
private String password;


public String login() {
    try {
        Authentication request = new UsernamePasswordAuthenticationToken(
                this.getUserName(), this.getPassword());
        Authentication result = authenticationManager.authenticate(request);
        SecurityContextHolder.getContext().setAuthentication(result);
    } catch (AuthenticationException e) {
        e.printStackTrace();
    }
    return "secured";
}

public String getUserName() {
    return userName;
}

public void setUserName(String userName) {
    this.userName = userName;
}

public String getPassword() {
    return password;
}

public void setPassword(String password) {
    this.password = password;
}

public AuthenticationManager getAuthenticationManager() {
    return authenticationManager;
}

public void setAuthenticationManager(
        AuthenticationManager authenticationManager) {
    this.authenticationManager = authenticationManager;
}

}

I am trying to inject authenticationManager

 @ManagedProperty(value = "#{authenticationManager}")
private AuthenticationManager authenticationManager;

or create a constructor

    @Autowired
 public LoginBean(AuthenticationManager authenticationManager) {
this.authenticationManager = authenticationManager;
}

or add @Autowired

to setter, authenticationManager is always NULL. How can I insert an authentication manager?

I am trying @ovverride

authenticationManagerBean nothing i found spring security giude but i dont want to use thymeleaf

thanks for the help

0


source to share


1 answer


Do you have signatures in your web.xml? If you are using @Configuration then this is required.



<servlet>
    <servlet-name>appServlet</servlet-name>
    <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
    <init-param>
        <param-name>contextClass</param-name>
        <param-value>
            org.springframework.web.context.support.AnnotationConfigWebApplicationContext
        </param-value>
    </init-param>
    <init-param>
        <param-name>contextConfigLocation</param-name>
        <param-value>
           com.yourClass
        </param-value>
    </init-param>
</servlet>
-1


source






More articles:


All Articles