IllegalArgumentException on Tomcat startup

**Kiran Keshav** · Jul 27th, 2005, 11:30 PM

Hello,

When adding an acl voter to my decisionVoters in the accessDecisionManager, I always get a

Code:

java.lang.IllegalArgumentException&#58; AccessDecisionManager does not support secure object class&#58; class net.sf.acegisecurity.intercept.web.FilterInvocation
	at net.sf.acegisecurity.intercept.AbstractSecurityInterceptor.afterPropertiesSet&#40;AbstractSecurityInterceptor.java&#58;246&#41;
	at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.invokeInitMethods&#40;AbstractAutowireCapableBeanFactory.java&#58;1003&#41;
	at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean&#40;AbstractAutowireCapableBeanFactory.java&#58;348&#41;
	at org.springframework.beans.factory.support.AbstractBeanFactory.getBean&#40;AbstractBeanFactory.java&#58;226&#41;
	at org.springframework.beans.factory.support.AbstractBeanFactory.getBean&#40;AbstractBeanFactory.java&#58;147&#41;

In my applicationContext-security.xml file I have:

Code:

<bean id="securityEnforcementFilter" class="net.sf.acegisecurity.intercept.web.SecurityEnforcementFilter">
        <property name="filterSecurityInterceptor"><ref local="filterInvocationInterceptor"/></property>
        <property name="authenticationEntryPoint"><ref local="authenticationProcessingFilterEntryPoint"/></property>
    </bean>
    
    <bean id="filterInvocationInterceptor" class="net.sf.acegisecurity.intercept.web.FilterSecurityInterceptor">
        <property name="authenticationManager"><ref local="authenticationManager"/></property>
        <property name="accessDecisionManager"><ref local="businessAccessDecisionManager"/></property>
        <property name="objectDefinitionSource">
            <value>
                CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
                PATTERN_TYPE_APACHE_ANT
                /signup.html=admin,user
                /passwordhint.html*=admin,user
                /**/*.html*=admin,user
                /**/*.htm*=admin,user
                /clickstreams.jsp=admin
            </value>
        </property>
    </bean>
    <bean id="businessAccessDecisionManager" class="net.sf.acegisecurity.vote.AffirmativeBased">
      <property name="allowIfAllAbstainDecisions"><value>false</value></property>
      <property name="decisionVoters">
         <list>
            <ref local="roleVoter"/>
            <ref local="aclMyObjectWriteVoter"/>          
         </list>
      </property>  
   </bean>

As a recent adopter of Acegi, this is probably a configuration issue. Any ideas? I am currently using version 0.8.3.

Thanks in advance.

**Kiran Keshav** · Jul 28th, 2005, 03:32 PM

There was a reference in my filterInvocationInterceptor to an accessDecisionManager with an aclVoter. When using both the filterInvocationInterceptor and the methodInvocationInterceptor, you have to define 2 different accessDecisionManagers, one with acl voters (called by the methodInvocationIterceptor) and one without (called by the filterInvocationInterceptor).

**Ben Alex** · Jul 30th, 2005, 08:27 PM

This is correct. BasicAclEntryVoter will only support MethodInvocation security - not FilterInvocation security. As such, at startup time the FilterSecurityInterceptor (which uses FilterInvocation) queried the corresponding AccessDecisionManager and found a non-supporting AccessDecisionVoter.

I thought I'd expand on what was happening to help other users who encounter this.

Thread: IllegalArgumentException on Tomcat startup

Thread Tools

Display

IllegalArgumentException on Tomcat startup

resolved

Similar Threads

Spring + Quartz + Tomcat = no shutdown

Petclinic Database Setup--JNDI connection-pool with Tomcat

Tomcat [ERROR] SchemaExecute update

Moving From Windows Tomcat 5.0.28 to Linux Tomcat 5.0.28

Problem with Tomcat "-security" switch

Posting Permissions