1. 首頁
  2. 問答
  3. 嘗試使用會話管理時出錯

嘗試使用會話管理時出錯

2017-10-20 58 views
3

我試圖將session-management放入我的security-application.xml文件中。嘗試使用會話管理時出錯

錯誤:

Invalid content was found starting with element 'session-management'. One of '{"http://www.springframework.org/schema/security":intercept-url,

enter image description here

我試圖把在其他地方,但沒有成功。

建議?

------------------------ UPDATE ONE -------------------- ----

我想:

<security:session-management invalid-session-url="/logonTimeOut.jsp"> 
      <security:concurrency-control expired-url="/logonTimeOut.jsp"/> 
     </security:session-management>

,它仍然沒有工作。

來源

2017-10-20 Drew1208

+0

看起來像一個XML架構驗證錯誤給我。你能否把整個XML和整個錯誤信息添加到你的問題中?特別是名稱空間聲明將很重要。例如。 ''xmlns:security = ...' – Oresztesz

回答

1

我想你的XML配置不正確.Change XML配置這樣

<?xml version="1.0" encoding="UTF-8"?> 
<beans:beans xmlns="http://www.springframework.org/schema/security" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:beans="http://www.springframework.org/schema/beans" 
    xsi:schemaLocation=" 
     http://www.springframework.org/schema/security 
     http://www.springframework.org/schema/security/spring-security-4.2.xsd 
     http://www.springframework.org/schema/beans 
     http://www.springframework.org/schema/beans/spring-beans-4.3.xsd" 
> 

    <http create-session="always" use-expressions="true"> 
     <intercept-url pattern="/anonymous*" access="isAnonymous()"/> 
     <intercept-url pattern="/login*" access="permitAll"/> 
     <intercept-url pattern="/**" access="isAuthenticated()"/> 

     <csrf disabled="true"/> 

     <form-login login-page='/login.html' authentication-success-handler-ref="myAuthenticationSuccessHandler" authentication-failure-url="/login.html?error=true"/> 

     <logout delete-cookies="JSESSIONID"/> 
     <remember-me key="uniqueAndSecret" token-validity-seconds="86400"/> 

     <session-management invalid-session-url="/invalidSession.html"> 
      <concurrency-control max-sessions="2" expired-url="/sessionExpired.html"/> 
     </session-management> 

    </http> 

    <beans:bean id="myAuthenticationSuccessHandler" class="org.baeldung.security.MySimpleUrlAuthenticationSuccessHandler"/> 

    <authentication-manager> 
     <authentication-provider> 
      <user-service> 
       <user name="user1" password="user1Pass" authorities="ROLE_USER"/> 
       <user name="admin1" password="admin1Pass" authorities="ROLE_ADMIN"/> 
      </user-service> 
     </authentication-provider> 
    </authentication-manager> 

</beans:beans>

來源

2017-10-22 19:48:34

+0

這不起作用,所以我嘗試了'\t \t \t ''仍然不會進入該頁面。 – Drew1208

+0

我還需要啓用CSRF – Drew1208

+0

刪除此

相關問題

 相關問題