spring security 不拦截action

1.首先spring security 过滤器在web.xml中的声明位置一定要在action之前,否则不报错,也不拦截action。
2.spring security的filter-mapping 应该是/*
3.一般struts2的filter-mapping 也应该是/*

4.如果想使用welcome-file-list,通过jsp跳转,那么需要在struts.properties中配置:struts.action.extension=action,这个配置不会和spring security相关

5. spring security配置中的url需要全部用 ”/”开头


true" lowercase-comparisons="true">
/login.action"
authentication-failure-url="/login.action?error=true"
login-processing-url="/j_security_check"
default-target-url="/edit/fuck.action"
always-use-default-target="true"/>
/login.action*" filters="none"/>
/view/**" filters="none"/>
/" filters="none"/>
/styles/**" filters="none"/>
/jquery/**" filters="none"/>
/images/**" filters="none"/>
/fckskin/**" filters="none"/>
/fckeditor/**" filters="none"/>
/**" access="ROLE_ADMIN"/>
/login.action"/>
 
  
 
  
springSecurityFilterChain
class>org.springframework.web.filter.DelegatingFilterProxyclass>
 
  
springSecurityFilterChain
/*
 
  

你可能感兴趣的:(spring security 不拦截action)