Junior Member
ContextLoaderListener
The filter uses WebApplicationContext, becouse of that you have to put the ContextLoaderListener:
And dont forget the contextConfigLocation:Code:<listener> <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class> </listener>
Thatīs allCode:<context-param> <param-name>contextConfigLocation</param-name> <param-value>/WEB-INF/spring/*.xml </param-value> </context-param>
Junior Member
It works! Thank you very much.
Bug.
Junior Member
How to configure Spring Security Filter Chain with Tuckey ?
I also have some problems to get Spring Security work with Spring 3 and Tuckey 3.0.4.
Here is my: web.xml
And my applicationContext-security.xml:Code:<?xml version="1.0" encoding="UTF-8"?> <web-app version="3.0" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"> <context-param> <param-name>contextConfigLocation</param-name> <param-value> /WEB-INF/applicationContext.xml /WEB-INF/applicationContext-security.xml </param-value> </context-param> <!-- Begin of Spring Security --> <filter> <filter-name>springSecurityFilterChain</filter-name> <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class> </filter> <filter-mapping> <filter-name>springSecurityFilterChain</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <!-- End of Spring Security --> <!-- Tuckey --> <filter> <filter-name>UrlRewriteFilter</filter-name> <filter-class>org.tuckey.web.filters.urlrewrite.UrlRewriteFilter</filter-class> </filter> <filter-mapping> <filter-name>UrlRewriteFilter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <!-- End of Tuckey --> <listener> <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class> </listener> <!-- Dispatcher Servlet --> <servlet> <servlet-name>dispatcher</servlet-name> <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class> <load-on-startup>2</load-on-startup> </servlet> <servlet-mapping> <servlet-name>dispatcher</servlet-name> <url-pattern>/app/*</url-pattern> </servlet-mapping> <!-- End of Dispatcher Servlet --> <session-config> <session-timeout> 30 </session-timeout> </session-config> <welcome-file-list> <welcome-file>redirect.jsp</welcome-file> </welcome-file-list> </web-app>
For Request-Mapping I use: DefaultAnnotationHandlerMappingCode:... <http access-denied-page="/accessDenied.jsp"> <intercept-url pattern="/erstellen.html" access="ROLE_USER" /> <intercept-url pattern="/**" access="IS_AUTHENTICATED_ANONYMOUSLY" /> <http-basic /> <form-login login-page='/login.html' authentication-failure-url="/login.html?error=1" /> <logout /> </http> ...
My urlrewrite.xml is:Code:<bean class="org.springframework.web.servlet.mvc.annotation.DefaultAnnotationHandlerMapping" />
And my Controller has the following code in it:Code:<?xml version="1.0" encoding="utf-8"?> <!DOCTYPE urlrewrite PUBLIC "-//tuckey.org//DTD UrlRewrite 3.2//EN" "http://tuckey.org/res/dtds/urlrewrite3.2.dtd"> <urlrewrite default-match-type="wildcard"> <rule> <from>/**</from> <to>/app/$1</to> </rule> <outbound-rule> <from>/app/**</from> <to>/$1</to> </outbound-rule> </urlrewrite>
If I want to open http://localhost:8080/project/mypage.html I'm getting:Code:@RequestMapping(value="/app/mypage.html/{code}", method=RequestMethod.GET) public ModelAndView showErrors(@ModelAttribute("user") User user, @PathVariable("code") String errorMessage) { ModelAndView mv = new ModelAndView("mypage"); return mv; }
And if I want to open http://localhost:8080/project/ I get:Code:HTTP Status 405 - Request method 'GET' not supported
Can anybody help?Code:HTTP Status 404
Greetings
Benny
Junior Member
You should have your Tuckey Urlrewrite Filter before Spring Security Filter in web.xml, because otherwise it cannot work. Also version 3.2 is stable version of Tuckey, why cannot you use it? And then you should add following to your Spring Security filter:Originally Posted by bennyn
And also mapping @RequestMapping(value="/app/mypage.html/{code} is wrong, unless you don't want your controller real url to be app/app/mypage.html/.Code:<filter> <filter-name>springSecurityFilterChain</filter-name> <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class> </filter> <filter-mapping> <filter-name>springSecurityFilterChain</filter-name> <url-pattern>/*</url-pattern> <dispatcher>REQUEST</dispatcher> <dispatcher>FORWARD</dispatcher> <dispatcher>INCLUDE</dispatcher> <dispatcher>ERROR</dispatcher> </filter-mapping>
Last edited by __dev18; Sep 20th, 2010 at 02:56 AM.
Member
Update controller
Hi there,
As suggested your URL mappings on the controller seem incorrect.
You should replace
WithCode:@RequestMapping(value="/app/mypage.html/{code}", method=RequestMethod.GET) public ModelAndView showErrors(@ModelAttribute("user") User user, @PathVariable("code") String errorMessage) { ModelAndView mv = new ModelAndView("mypage"); return mv; }
Then you can hit the URL like so (assuming you have Tuckey setup):Code:@RequestMapping(value="/app/{code}/mypage.html", method=RequestMethod.GET) public ModelAndView showErrors(@ModelAttribute("user") User user, @PathVariable("code") String errorMessage) { ModelAndView mv = new ModelAndView("mypage"); return mv; }
EggsyCode:http://localhost:8080/app/*/mypage.html
Junior Member
Hi __dev18 and eggsy84. Thank you very much for your help!
With your advice I have made it.
But there is still a problem.
My application context path is /ksw and is deployed to http://localhost:8080/ksw
In my *.jsp's I have some links which look like:
These links are also not working. But the controllers are doing very well!Code:<script type="text/javascript" src="/ksw/js/script.js"></script>
Unfortunately http://localhost:8080/ksw/j_spring_security_check ends up in error 404
Maybe it's because I use the following "form action" in "login.jsp"?
My configuration is the following now:Code:<form action="<c:url value='j_spring_security_check'/>" method="POST">
web.xml
urlrewrite.xmlCode:... <!-- Tuckey's URL Rewrite Filter --> <filter> <filter-name>UrlRewriteFilter</filter-name> <filter-class>org.tuckey.web.filters.urlrewrite.UrlRewriteFilter</filter-class> </filter> <filter-mapping> <filter-name>UrlRewriteFilter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <!-- Spring Security --> <filter> <filter-name>springSecurityFilterChain</filter-name> <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class> </filter> <filter-mapping> <filter-name>springSecurityFilterChain</filter-name> <url-pattern>/*</url-pattern> <dispatcher>REQUEST</dispatcher> <dispatcher>FORWARD</dispatcher> <dispatcher>INCLUDE</dispatcher> <dispatcher>ERROR</dispatcher> </filter-mapping> ... <!-- Dispatcher Servlet --> <servlet> <servlet-name>dispatcher</servlet-name> <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class> <load-on-startup>2</load-on-startup> </servlet> <servlet-mapping> <servlet-name>dispatcher</servlet-name> <url-pattern>/app/*</url-pattern> </servlet-mapping> ... <welcome-file-list> <welcome-file>redirect.jsp</welcome-file> </welcome-file-list> ...
PageController.javaCode:<?xml version="1.0" encoding="utf-8"?> <!DOCTYPE urlrewrite PUBLIC "-//tuckey.org//DTD UrlRewrite 3.2//EN" "http://tuckey.org/res/dtds/urlrewrite3.2.dtd"> <urlrewrite default-match-type="wildcard"> <rule> <from>/**</from> <to>/app/$1</to> </rule> <outbound-rule> <from>/app/**</from> <to>/$1</to> </outbound-rule> </urlrewrite>
Code:@RequestMapping(value="/page/{code}", method=RequestMethod.GET) public ModelAndView showErrors(@ModelAttribute("user") User user, @PathVariable("code") String errorMessage) { ... }
Last edited by bennyn; Sep 20th, 2010 at 03:47 PM.
Junior Member
Hi, you need to add rules to urlrewrite filter xml for Spring Security Servelts. For example in your case you need to allow Spring Security handle url j_spring_security_check.Hi __dev18 and eggsy84. Thank you very much for your help!
With your advice I have made it.
But there is still a problem.
My application context path is /ksw and is deployed to http://localhost:8080/ksw
In my *.jsp's I have some links which look like:
These links are also not working. But the controllers are doing very well!Code:<script type="text/javascript" src="/ksw/js/script.js"></script>
Unfortunately http://localhost:8080/ksw/j_spring_security_check ends up in error 404
Maybe it's because I use the following "form action" in "login.jsp"?
Code:<form action="<c:url value='j_spring_security_check'/>" method="POST">
Code:<rule> <from>/j_spring_security_check**</from> <to>/j_spring_security_check$1</to> </rule> <rule> <from>/logout**</from> <to>/logout$1</to> </rule>
Junior Member
Ok, I did this but then my GlassFish v3 application server claims:
Here is my login.jsp:WARNING: No mapping found for HTTP request with URI [/ksw/app/j_spring_security_check] in DispatcherServlet with name 'dispatcher'
And some lines from my applicationContext-security.xml:<form action="<c:url value='j_spring_security_check'/>" method="POST">
...
</form>
Maybe you can see an error in it... I'm very new to these things.<http access-denied-page="/accessDenied">
<intercept-url pattern="/app/page" access="ROLE_USER" />
<intercept-url pattern="/login" access="IS_AUTHENTICATED_ANONYMOUSLY" />
<http-basic />
<form-login login-page="/login" authentication-failure-url="/login/error" />
<logout />
</http>
Junior Member
What version of urlrewrite filter you are using now? And these rules must be before app rule.Ok, I did this but then my GlassFish v3 application server claims:
Here is my login.jsp:
And some lines from my applicationContext-security.xml:
Maybe you can see an error in it... I'm very new to these things.
In version 3.2 you need to add following xml rules:
Code:<rule> <from>/j_spring_security_check**</from> <to last="true">/j_spring_security_check$1</to> </rule> <rule> <from>/logout**</from> <to last="true">/logout$1</to> </rule>
Last edited by __dev18; Sep 21st, 2010 at 05:34 AM.
Junior Member
I use version 3.2. With your configuration the Login works now!
I had to change the form action url in my login.jsp from:
To:<form action="<c:url value='j_spring_security_check'/>" method="POST">
The only things which are not working yet is the "Logout" and my JavaScripts and CSS from my JSPs.<form action="<c:url value='/ksw/j_spring_security_check'/>" method="POST">
Before using REST I always did the logout with the following url: http://localhost:8080/ksw/j_spring_security_logout
But this is not possible anymore. I always get the warning:
Things which I have linked in my JSPs with:No mapping found for HTTP request with URI [/ksw/app/j_spring_security_logout] in DispatcherServlet with name 'dispatcher'
Do also give a warning, e.g.:<script type="text/javascript" src="/ksw/js/prototype.js"></script>
My urlrewrite.xml is now:No mapping found for HTTP request with URI [/ksw/app/js/prototype.js] in DispatcherServlet with name 'dispatcher'
P.S. If we get the things work, then I will write an entry in my blog so that nobody else pulls his/her hair out.<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE urlrewrite PUBLIC "-//tuckey.org//DTD UrlRewrite 3.2//EN"
"http://tuckey.org/res/dtds/urlrewrite3.2.dtd">
<urlrewrite default-match-type="wildcard">
<rule>
<from>/**</from>
<to>/app/$1</to>
</rule>
<outbound-rule>
<from>/app/**</from>
<to>/$1</to>
</outbound-rule>
<rule>
<from>/j_spring_security_check**</from>
<to last="true">/j_spring_security_check$1</to>
</rule>
<rule>
<from>/j_spring_security_logout**</from>
<to last="true">/j_spring_security_logout$1</to>
</rule>
</urlrewrite>
