添加自定义过滤器

我试图使自定义AuthenticationProcessingFilter成功登录添加自定义过滤器

这里后，在会议上，一些用户数据保存的我的过滤器：

package projects.internal; 

import java.io.IOException; 

import javax.servlet.http.HttpServletRequest; 
import javax.servlet.http.HttpServletResponse; 

import org.springframework.security.Authentication; 
import org.springframework.security.ui.webapp.AuthenticationProcessingFilter; 

public class MyAuthenticationProcessingFilter extends AuthenticationProcessingFilter { 


protected void onSuccessfulAuthentication(HttpServletRequest request, 
    HttpServletResponse response, Authentication authResult) 
    throws IOException { 
    super.onSuccessfulAuthentication(request, response, authResult); 
    request.getSession().setAttribute("myValue", "My value is set"); 
} 
}

，这里是我的security.xml文件

<beans:beans xmlns="http://www.springframework.org/schema/security" 
xmlns:beans="http://www.springframework.org/schema/beans" 
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
xsi:schemaLocation="http://www.springframework.org/schema/beans 
http://www.springframework.org/schema/beans/spring-beans-3.0.xsd 
         http://www.springframework.org/schema/security 
         http://www.springframework.org/schema/security/spring-security-3.0.xsd"> 

<global-method-security pre-post-annotations="enabled"> 

</global-method-security> 
<http use-expressions="true" auto-config="false" entry-point-ref="authenticationProcessingFilterEntryPoint"> 
    <intercept-url pattern="/" access="permitAll" /> 
    <intercept-url pattern="/images/**" filters="none" /> 
    <intercept-url pattern="/scripts/**" filters="none" /> 
    <intercept-url pattern="/styles/**" filters="none" /> 
    <intercept-url pattern="/p/login.jsp" filters="none" /> 
    <intercept-url pattern="/p/register" filters="none" /> 
    <intercept-url pattern="/p/**" access="isAuthenticated()" /> 

    <form-login 
    login-processing-url="/j_spring_security_check" 
    login-page="/p/login.jsp" 
    authentication-failure-url="/p/login_error.jsp" /> 
    <logout /> 
</http> 

<authentication-manager alias="authenticationManager"> 
<authentication-provider> 
    <jdbc-user-service data-source-ref="dataSource"/> 
    </authentication-provider> 
</authentication-manager> 

<beans:bean id="authenticationProcessingFilter" class="projects.internal.MyAuthenticationProcessingFilter"> 
<custom-filter position="AUTHENTICATION_PROCESSING_FILTER" /> 
    </beans:bean> 

    <beans:bean id="authenticationProcessingFilterEntryPoint" class="org.springframework.security.ui.webapp.AuthenticationProcessingFilterEntryPoint"> 
    </beans:bean> 


</beans:beans>

它给这里的错误：

<custom-filter position="AUTHENTICATION_PROCESSING_FILTER" />

CVC-attribute.3 CVC-复杂type.4 CVC-枚举vaild

是什么问题：

在这条线找到多个注释？

来源

2010-03-22 user353682

放在你确定名称为“authenticationProcessingFilter”尚未采取默认的Spring Security豆？ – Gandalf 2010-03-23 20:08:13

有一个更好的工具可以满足你的需要：'authentication-success-handler' - 把它加到你的'

我不认为这是Spring Security 3.0模式中的有效过滤器位置。检出Security Namespace Configuration。我不认为它已经上市了。也许尝试BASIC_AUTH_FILTER

来源

2010-03-23 20:11:37 Gandalf

AUTHENTICATION_PROCESSING_FILTER不是有效的过滤器的别名，你应该使用FORM_LOGIN_FILTER。
<custom-filter>应该内<http>

来源

2012-08-22 08:45:31 Hawk

添加自定义过滤器

回答

相关问题