spring启动tomcat J2EE预认证认证

Question

我无法获得tomcat配置的权利。

我想在Tomcat上部署简单的Spring Boot应用程序，j2eePreAuth为Tomcat以进行身份​​验证。

我读了一些关于web.xml的配置。他们提到除了Spring类之外，还要把安全配置放到一个web.xml之内。但它没有改变任何东西。

我也试图改变Tomcat本身的web.xml没有成功。

所以我的问题是：我有什么配置Tomcat才能得到这个权利？

这里是我的安全：

@Configuration 
@EnableWebSecurity 
public class SecurityConfig extends WebSecurityConfigurerAdapter { 
    private static String ROLE_PREFIX = "ROLE_"; 

    @Override 
    protected void configure(HttpSecurity http) throws Exception { 
     http.authorizeRequests() 
      // Alle weiteren Pfadsegmente sind für User authentifiziert erreichbar 
       .anyRequest().authenticated() 
       .and() 
      .jee() 
      // Registrierung eines eigenen Jee PreAuthenticatedProcessingFilter 
       .j2eePreAuthenticatedProcessingFilter(j2eePreAuthenticatedProcessingFilter()); 
    } 

    @Bean 
    @Override 
    public AuthenticationManager authenticationManagerBean() throws Exception { 
     return super.authenticationManagerBean(); 
    } 

    /** 
    * Um auf die web.xml zu verzichten muss ein ganzer J2eePreAuthenticatedProcessingFilter definiert werden. 
    */ 
    @Bean 
    public J2eePreAuthenticatedProcessingFilter j2eePreAuthenticatedProcessingFilter() throws Exception { 
     J2eePreAuthenticatedProcessingFilter j2eePreAuthenticatedProcessingFilter = new J2eePreAuthenticatedProcessingFilter(); 
     j2eePreAuthenticatedProcessingFilter.setAuthenticationManager(authenticationManagerBean()); 

     J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource j2eeBasedPreAuthenticatedWebAuthenticationDetailsSource = new J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource(); 
     j2eeBasedPreAuthenticatedWebAuthenticationDetailsSource.setMappableRolesRetriever(simpleMappableAttributesRetriever()); 

     SimpleAttributes2GrantedAuthoritiesMapper simpleAttributes2GrantedAuthoritiesMapper = new SimpleAttributes2GrantedAuthoritiesMapper(); 
     simpleAttributes2GrantedAuthoritiesMapper.setConvertAttributeToUpperCase(true); 
     j2eeBasedPreAuthenticatedWebAuthenticationDetailsSource.setUserRoles2GrantedAuthoritiesMapper(simpleAttributes2GrantedAuthoritiesMapper); 

     j2eePreAuthenticatedProcessingFilter.setAuthenticationDetailsSource(j2eeBasedPreAuthenticatedWebAuthenticationDetailsSource); 
     return j2eePreAuthenticatedProcessingFilter; 
    } 

    /** 
    * Dieser MappableAttributesRetriever liefert eine eigene Liste von JEE Rollen statt der aus einer web.xml. 
    */ 
    @Bean 
    public MappableAttributesRetriever simpleMappableAttributesRetriever() { 
     SimpleMappableAttributesRetriever simpleMappableAttributesRetriever = new SimpleMappableAttributesRetriever(); 
     Set<String> roles = new HashSet<String>(); 
     // Hier müssen die Rollen angegeben werden! 
     roles.add(ROLE_PREFIX + "INTERNAL"); 
     roles.add(ROLE_PREFIX + "MANAGEMENT"); 
     roles.add(ROLE_PREFIX + "USER"); 
     simpleMappableAttributesRetriever.setMappableAttributes(roles); 
     return simpleMappableAttributesRetriever; 
    } 

} 

和一个简单的RESt控制器：

@RestController 
@RequestMapping(value = "/a") 
@PreAuthorize("hasAuthority('ROLE_USER')") 
public class Controller { 

    @RequestMapping("") 
    public String index(Principal p) { 
     return "logged in as: " + p.getName(); 
    } 

} 

Answer 1

我得到它的工作！

我添加以下内容Tomcat小号的conf/web.xml中

<security-constraint> 
    <web-resource-collection> 
     <web-resource-name>Basic Authentication</web-resource-name> 
<!--Here wildcard entry defines authentication is needed for whole app --> 
      <url-pattern>/*</url-pattern> 
     <http-method>GET</http-method> 
     <http-method>POST</http-method> 
    </web-resource-collection> 
    <auth-constraint> 
     <role-name>ROLE_USER</role-name> 
    </auth-constraint> 
</security-constraint> 

<login-config> 
    <auth-method>BASIC</auth-method> 
</login-config> 

<security-role> 
    <description>Any User</description> 
    <role-name>ROLE_USER</role-name> 
</security-role>