2013-05-06 218 views
0

過去幾天我已經能夠進行身份驗證,但最近必須重新安裝我的程序後,我無法再進行身份驗證。沒有錯誤消息,hql查詢顯示在控制檯中,頁面重定向回登錄頁面。Spring安全認證不再起作用

安全XML

<http auto-config="true" use-expressions="true"> 

<intercept-url pattern="/**" requires-channel="https" /> 
<intercept-url pattern='/admin/admin/**' access="hasRole('ROLE_ADMIN')" /> 
<intercept-url pattern='/main/home/**' access="hasRole('ROLE_USER')" /> 
<intercept-url pattern='/main/user/setter/settingpage' 

access="hasRole('ROLE_USER')" /> 
<intercept-url pattern='/main/user/setter/addpage' access="hasRole('ROLE_USER')" /> 

<form-login login-page="/" default-target-url="/main/home" /> 
<logout logout-url="/logout" invalidate-session="true" logout-success-url="/" /> 

輸出查詢

Hibernate: select userentity0_.user_id as user1_2_, userentity0_.active as 

    active2_, userentity0_.checker_id as checker7_2_, userentity0_.email as email2_, 

    userentity0_.name as name2_, userentity0_.password as password2_, 

    userentity0_.username as username2_ from user userentity0_ where 

    userentity0_.username=? 

我希望知道,爲什麼我不能再登錄。

+0

你看到下面的答案中加入這一行?它有幫助嗎? – Michael 2013-05-17 06:52:14

回答

0

我可以看到2個問題,在您的配置:

1)你沒有配置登錄URL(它不能\

<form-login login-page="/login" default-target-url="/main/home" /> 

2)不要登錄URL添加授權。在開始的時候(前pattern='/main/home/**'

<intercept-url pattern="/login*" access="permitAll" />