Shiro报错No SecurityManager accessible to the calling code

HTTP Status 500 - No SecurityManager accessible to the calling code, either bound to the org.apache.shiro.util.ThreadContext or as a vm static singleton. This is an invalid application configuration.

上面浏览器报错原因

下面工具报错原因

ERROR DefaultDispatcherErrorHandler:42 - Exception occurred during processing request: No SecurityManager accessible to the calling code, either bound to the org.apache.shiro.util.ThreadContext or as a vm static singleton.  This is an invalid application configuration.

org.apache.shiro.UnavailableSecurityManagerException:No SecurityManager accessible to the calling code, either bound to the org.apache.shiro.util.ThreadContext or as a vm static singleton.  This is an invalid application configuration.

 

原因:

web.xml文件中filter顺序问题:多个filter的执行顺序从上往下

做用户登录权限效验出错,由于把shiro filter写到了struts filter后面,当登录的时候会先走struts的filter

大概意思就是shiro无法管理到这个请求,而你又在配置文件里设置要shiro管理这个请求

解决:

shiro filter放在struts2 filter前面

 

 

 

如未解决,提供其他解决方案:

    <filter>
        <filter-name>shiroFilter</filter-name>
        <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
    </filter>
    <filter-mapping>
        <filter-name>shiroFilter</filter-name>
        <url-pattern>/*</url-pattern>
       <dispatcher>REQUEST</dispatcher>
        <dispatcher>FORWARD</dispatcher>
        <dispatcher>INCLUDE</dispatcher>
        <dispatcher>ERROR</dispatcher>
    </filter-mapping>

加上dispatcher

作用:

转发,错误等请求,必须经过这个过滤器。

 

 

 

 

org.apache.shiro.authc.IncorrectCredentialsException:Submitted credentials for token [org.apache.shiro.authc.UsernamePasswordToken - lisi, rememberMe=false] did not match the expected credentials.

登录时报错

原因:

F12查看到只有用户名,密码未传递过来,表单未填写input name=password

搜索了看到还有种可能,数据库密码是hash,form表单传递过来的为明文,导致不一致.

我并不是这种情况,所以没有去使用