碼上快樂

相關內容    簡體    繁體

005-SpringBoot2.x整合Security5(解決 There is no PasswordEncoder mapped for the id "null")

本文轉載自   查看原文   2018-10-30 17:56   1471    java-spring-boot-ext

問題描述

  SpringBoot升級到了2.0之后的版本,Security也由原來的版本4升級到了5

使用WebSecurityConfigurerAdapter繼承重置方法

protected void configure(AuthenticationManagerBuilder auth) throws Exception {
        //inMemoryAuthentication 從內存中獲取  
        auth.inMemoryAuthentication().withUser("user1").password("123456").roles("USER"); 
}

此時

  java.lang.IllegalArgumentException: There is no PasswordEncoder mapped for the id "null"

在Spring Security中密碼的存儲格式是“{id}…………”。前面的id是加密方式,id可以是bcrypt、sha256等,后面跟着的是加密后的密碼。也就是說,程序拿到傳過來的密碼的時候,會首先查找被“{”和“}”包括起來的id,來確定后面的密碼是被怎么樣加密的,如果找不到就認為id是null。這也就是為什么我們的程序會報錯:There is no PasswordEncoder mapped for the id “null”。官方文檔舉的例子中是各種加密方式針對同一密碼加密后的存儲形式,原始密碼都是“password”。

{bcrypt}$2a$10$dXJ3SW6G7P50lGmMkkmwe.20cQQubK3.HZWzG3YB1tlRy.fqvM/BG 
{noop}password 
{pbkdf2}5d923b44a6d129f3ddf3e3c8d29412723dcbde72445e8ef6bf3b508fbf17fa4ed4d6b99ca763d8dc 
{scrypt}$e0801$8bWJaSu2IKSn9Z9kM+TPXfOc/9bdYSrN1oD9qfVThWEwdRTnO7re7Ei+fUZRJ68k9lTyuTeUp4of4g24hHnazw==$OAOec05+bXxvuu/1qZ6NUR+xQYvYv7BeL1QxwRpY5Pc=  
{sha256}97cde38028ad898ebc02e690819fa220e88c62e0699403e94fff291cfffaf8410849f27605abcbc0

方式一、增加具體實例

內存

protected void configure(AuthenticationManagerBuilder auth) throws Exception {
        //inMemoryAuthentication 從內存中獲取  
        auth.inMemoryAuthentication().passwordEncoder(new BCryptPasswordEncoder()).withUser("user1").password(new BCryptPasswordEncoder().encode("123456")).roles("USER");
}

在inMemoryAuthentication()后面多了".passwordEncoder(new BCryptPasswordEncoder())",相當於登陸時用BCrypt加密方式對用戶密碼進行處理。以前的".password("123456")" 變成了 ".password(new BCryptPasswordEncoder().encode("123456"))" ,這相當於對內存中的密碼進行Bcrypt編碼加密。比對時一致,說明密碼正確,允許登陸。

數據庫

如果是注入userDetailsService

//注入userDetailsService的實現類
auth.userDetailsService(userService).passwordEncoder(new BCryptPasswordEncoder());

如果你用的是在數據庫中存儲用戶名和密碼,那么一般是要在用戶注冊時就使用BCrypt編碼將用戶密碼加密處理后存儲在數據庫中。並且修改configure()方法,加入".passwordEncoder(new BCryptPasswordEncoder())",保證用戶登錄時使用bcrypt對密碼進行處理再與數據庫中的密碼比對。

沒有加密方式的

    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
        auth.inMemoryAuthentication().passwordEncoder(NoOpPasswordEncoder.getInstance())
                .withUser("admin").password("123456").roles("USER", "ADMIN");
    }

如果配置了spring security oauth2

    public void configure(ClientDetailsServiceConfigurer clients) throws Exception {
        clients.inMemory().withClient("client").secret("{noop}secret")
                .authorizedGrantTypes("client_credentials", "password", "refresh_token").scopes("all");
    }

 


免責聲明!

本站轉載的文章為個人學習借鑒使用,本站對版權不負任何法律責任。如果侵犯了您的隱私權益,請聯系本站郵箱yoyou2525@163.com刪除。



猜您在找 spring security 5 There is no PasswordEncoder mapped for the id "null" 錯誤 Spring Security 報There is no PasswordEncoder mapped for the id "null" There is no PasswordEncoder mapped for the id "null" There is no PasswordEncoder mapped for the id "null" 解決途徑 There is no PasswordEncoder mapped for the id "null"的解決辦法 There is no PasswordEncoder mapped for the id "null"'錯誤的解決方式 解決java.lang.IllegalArgumentException: There is no PasswordEncoder mapped for the id "null" java.lang.IllegalArgumentException: There is no PasswordEncoder mapped for the id “null” java.lang.IllegalArgumentException: There is no PasswordEncoder mapped for the id "null" java.lang.IllegalArgumentException: There is no PasswordEncoder mapped for the id "null"報錯
 
粵ICP備18138465號   © 2018-2025 CODEPRJ.COM