spring security 롤 처리 부분
- 작성자 :
- 권*현
- 작성일 :
- 2015-04-03 14:54:03
- 조회수 :
- 1,342
- 구분 :
- 공통컴포넌트
- 진행상태 :
- 완료
Q
실행 로그입니다.
2015-04-03 12:16:11,918 DEBUG [org.springframework.security.web.util.matcher.RegexRequestMatcher] Checking match of request : '/sec/rmt/EgovRoleList.do'; against '/sec/rmt/EgovRoleList.do'
2015-04-03 12:16:11,918 DEBUG [org.springframework.security.web.access.intercept.FilterSecurityInterceptor] Secure object: FilterInvocation: URL: /sec/rmt/EgovRoleList.do; Attributes: [ROLE_USER]
2015-04-03 12:16:11,918 DEBUG [org.springframework.security.web.access.intercept.FilterSecurityInterceptor] Previously Authenticated: org.springframework.security.authentication.UsernamePasswordAuthenticationToken@f9feb5e5: Principal: egovframework.rte.fdl.security.userdetails.EgovUserDetails@421cfb49: Username: shinekill; Password: [PROTECTED]; Enabled: true; AccountNonExpired: true; credentialsNonExpired: true; AccountNonLocked: true; Granted Authorities: ROLE_USER; Credentials: [PROTECTED]; Authenticated: true; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@ffff4c9c: RemoteIpAddress: 0:0:0:0:0:0:0:1; SessionId: 15C3D71E6A26B25976271D28CBACBA90; Granted Authorities: ROLE_USER
2015-04-03 12:16:11,918 DEBUG [org.springframework.security.access.vote.AffirmativeBased] Voter: org.springframework.security.access.vote.RoleVoter@50493c9e, returned: 1
2015-04-03 12:16:11,918 DEBUG [org.springframework.security.web.access.intercept.FilterSecurityInterceptor] Authorization successful
분명 동일한데 걸러지지가 않습니다.
도와주시면 감사하겠습니다.
간곡히 부탁드립니다.
-----수정--
현재 관리상태 캡쳐하여 첨부하였습니다. 잘못된 부분이 있는지 알려주시면 감사하겠습니다.
메인페이지 이동시에는 위와 로그가 다릅니다.
분명 필터링이 되는거 같긴한데 뭔가 후속 과정이 없습니다.
2015-04-03 12:17:28,752 DEBUG [org.springframework.security.web.util.matcher.RegexRequestMatcher] Checking match of request : '/egovDevIndex.jsp'; against '/sec/rmt/EgovRoleList.do'
2015-04-03 12:17:28,752 DEBUG [org.springframework.security.web.util.matcher.RegexRequestMatcher] Checking match of request : '/egovDevIndex.jsp'; against '/EgovLeft.do'
2015-04-03 12:17:28,752 DEBUG [org.springframework.security.web.access.intercept.FilterSecurityInterceptor] Public object - authentication not attempted
2015-04-03 12:16:11,918 DEBUG [org.springframework.security.web.util.matcher.RegexRequestMatcher] Checking match of request : '/sec/rmt/EgovRoleList.do'; against '/sec/rmt/EgovRoleList.do'
2015-04-03 12:16:11,918 DEBUG [org.springframework.security.web.access.intercept.FilterSecurityInterceptor] Secure object: FilterInvocation: URL: /sec/rmt/EgovRoleList.do; Attributes: [ROLE_USER]
2015-04-03 12:16:11,918 DEBUG [org.springframework.security.web.access.intercept.FilterSecurityInterceptor] Previously Authenticated: org.springframework.security.authentication.UsernamePasswordAuthenticationToken@f9feb5e5: Principal: egovframework.rte.fdl.security.userdetails.EgovUserDetails@421cfb49: Username: shinekill; Password: [PROTECTED]; Enabled: true; AccountNonExpired: true; credentialsNonExpired: true; AccountNonLocked: true; Granted Authorities: ROLE_USER; Credentials: [PROTECTED]; Authenticated: true; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@ffff4c9c: RemoteIpAddress: 0:0:0:0:0:0:0:1; SessionId: 15C3D71E6A26B25976271D28CBACBA90; Granted Authorities: ROLE_USER
2015-04-03 12:16:11,918 DEBUG [org.springframework.security.access.vote.AffirmativeBased] Voter: org.springframework.security.access.vote.RoleVoter@50493c9e, returned: 1
2015-04-03 12:16:11,918 DEBUG [org.springframework.security.web.access.intercept.FilterSecurityInterceptor] Authorization successful
분명 동일한데 걸러지지가 않습니다.
도와주시면 감사하겠습니다.
간곡히 부탁드립니다.
-----수정--
현재 관리상태 캡쳐하여 첨부하였습니다. 잘못된 부분이 있는지 알려주시면 감사하겠습니다.
메인페이지 이동시에는 위와 로그가 다릅니다.
분명 필터링이 되는거 같긴한데 뭔가 후속 과정이 없습니다.
2015-04-03 12:17:28,752 DEBUG [org.springframework.security.web.util.matcher.RegexRequestMatcher] Checking match of request : '/egovDevIndex.jsp'; against '/sec/rmt/EgovRoleList.do'
2015-04-03 12:17:28,752 DEBUG [org.springframework.security.web.util.matcher.RegexRequestMatcher] Checking match of request : '/egovDevIndex.jsp'; against '/EgovLeft.do'
2015-04-03 12:17:28,752 DEBUG [org.springframework.security.web.access.intercept.FilterSecurityInterceptor] Public object - authentication not attempted
A
안녕하세요. 권재현님.
spring security에는 .do 만 받아서 인증처리 하게 되어 있습니다.
web.xml > EgovSpringSecurityLoginFilter > *.do 부분 참조 하시면 됩니다.
spring security에는 .do 만 받아서 인증처리 하게 되어 있습니다.
web.xml > EgovSpringSecurityLoginFilter > *.do 부분 참조 하시면 됩니다.