AngularJS/AJAX驗證使用Spring安全 - 返回JSON響應

Question

春季安全配置

<security:form-login login-page="/login" 
     default-target-url="/myapp" always-use-default-target="true" 
     authentication-success-handler-ref="myAuthenticationSuccessHandler" 
     authentication-failure-handler-ref="myAuthenticationFailureHandler" /> 

<bean id="myAuthenticationSuccessHandler" 
     class="com.myapp.auth.AjaxAuthenticationSuccessHandler" /> 

<bean id="myAuthenticationFailureHandler" 
     class="com.myapp.auth.AjaxAuthenticationFailureHandler" /> 

成功和失敗處理器bean類：

public class AjaxAuthenticationSuccessHandler extends 
SimpleUrlAuthenticationSuccessHandler { 

public void onAuthenticationSuccess(HttpServletRequest request, 
    HttpServletResponse response, Authentication auth) 
    throws IOException, ServletException { 

    response.getWriter().print(
      "{'login': 'SUCCESS'}"); 
    response.getWriter().flush(); 

}} 


public class AjaxAuthenticationFailureHandler extends 
SimpleUrlAuthenticationFailureHandler { 

public void onAuthenticationFailure(HttpServletRequest request, 
    HttpServletResponse response, Authentication auth) 
    throws IOException, ServletException { 
    System.out.println("Login Failed..."); 
    response.getWriter().print(
      "{'login': 'FAIL'}"); 
    response.getWriter().flush(); 

}} 

問：
的登錄表單通過AJAX/Angular應用程序作爲Form Post發送，但是響應e預計爲JSON（無重定向）

登錄成功案例成功調用onAuthenticationSuccess，因此我可以返回JSON。
但登錄失敗案例並不是根本就調用onAuthenticationFailure。相反，我直接看到401響應。

我在做什麼錯？或者其他任何想法來實現這種行爲？

Answer 1

在AjaxAuthenticationFailureHandler爲onAuthenticationFailure正確的方法簽名（注意：此方法的最後一個參數）：

public void onAuthenticationFailure(javax.servlet.http.HttpServletRequest request, 
     javax.servlet.http.HttpServletResponse response, AuthenticationException exception) 
{ 

    try { 
     response.getWriter().print(
       "{'login': 'FAILURE'}"); 
     response.getWriter().flush(); 
    } catch (IOException e) { 
     e.printStackTrace(); 
    } 
} 

能解決問題。