我正在构建一个Angular 2 Web客户端,该客户端尝试使用SpringBoot Security向服务器执行POST。我应该如何编写我的Spring安全配置?为Angular 2配置Spring安全性
我的角度呼吁验证:
public login(username, password) {
let body = JSON.stringify({username: username, password: password});
let headers = new Headers({'Content-Type': 'application/json'});
let options = new RequestOptions({headers: headers});
this.http.post("http://localhost:8080/login", body, options)
.subscribe(
res => this.loggedIn = true,
err => console.error("failed authentication: " + err),
() => console.log("tried authentication")
);
}
身份验证失败,出现错误:
{"timestamp":1487007177889,"status":401,"error":"Unauthorized","message":"Authentication Failed: Empty Username","path":"/login"}
我春天的安全配置:
@Configuration
public class WebSecurityConfigurer extends WebSecurityConfigurerAdapter {
@Autowired
private RestAuthenticationEntryPoint restAuthenticationEntryPoint;
@Autowired
private RestAuthenticationSuccessHandler restAuthenticationSuccessHandler;
@Autowired
private RestAuthenticationFailureHandler restAuthenticationFailureHandler;
@Autowired
private RestLogoutSuccessHandler restLogoutSuccessHandler;
@Override
protected void configure(HttpSecurity http) throws Exception {
http.csrf().disable()
.exceptionHandling()
.authenticationEntryPoint(restAuthenticationEntryPoint)
.and().formLogin()
.loginProcessingUrl("/login")
.usernameParameter("username")
.passwordParameter("password")
.successHandler(restAuthenticationSuccessHandler)
.failureHandler(restAuthenticationFailureHandler)
.permitAll()
.and().logout()
.logoutUrl("/logout")
.logoutSuccessHandler(restLogoutSuccessHandler)
.permitAll()
.and().authorizeRequests().anyRequest().authenticated()
;
}
@Override
public void configure(AuthenticationManagerBuilder builder) throws Exception {
// This configuration has been tested, it works.
// It has been removed for better readability
}
@Bean
public LdapContextSource contextSource() {
// This configuration has been tested, it works.
// It has been removed for better readability
}
}
看起来像一个春天的问题。我在你的Angular代码中看不到任何错误。 – AngularChef