Access is denied (user is anonymous); redirecting to authentication entry point

最新推荐文章于 2025-02-27 10:32:27 发布
最新推荐文章于 2025-02-27 10:32:27 发布
阅读量1.8k 收藏
点赞数
分类专栏: SpringSecurity 文章标签: java 安全 spring
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/dreaminngkong/article/details/123044322
版权

代码报错如下:

org.springframework.security.access.AccessDeniedException: Access is denied
        at org.springframework.security.access.vote.AffirmativeBased.decide(AffirmativeBased.java:84)
        at org.springframework.security.access.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:233)
        at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:124)
        at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:91)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:119)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:137)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:111)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:170)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.security.web.savedrequest.RequestCacheAwareFilter.doFilter(RequestCacheAwareFilter.java:63)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:103)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.security.web.authentication.logout.LogoutFilter.doFilter(LogoutFilter.java:116)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:103)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:105)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:103)
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
        at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:215)
        at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:178)
        at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:357)
        at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:270)
        at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
        at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
        at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:712)
        at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:461)
        at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:384)
        at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:312)
        at org.apache.catalina.core.StandardHostValve.custom(StandardHostValve.java:394)
        at org.apache.catalina.core.StandardHostValve.status(StandardHostValve.java:253)
        at org.apache.catalina.core.StandardHostValve.throwable(StandardHostValve.java:348)
        at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:173)
        at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:92)
        at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:74)
        at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343)
        at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:408)
        at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66)
        at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:853)
        at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1587)
        at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)
        at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
        at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
        at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
        at java.lang.Thread.run(Thread.java:748)

排查代码发现出现问题原因是Redis获取token出错导致

Spring Security 6.x 系列(11)—— Form表单认证和注销流程
gmHappy
12-18 8253
① 首先,用户向未授权的资源 /private 发出未经身份认证的请求。 ② Spring Security 的 AuthorizationFilter 抛出 AccessDeniedException 异常。 ③ 由于用户未经过身份验证,因此 ExceptionTranslationFilter 将启动“启动身份验证”,并使用配置的 AuthenticationEntryPoint 将重定向发送到登录页。 ④ 浏览器请求重定向到的登录页面。 ⑤ 呈现默认登录页面。
Gerrit version 2.14.20 is now available
马哥私房菜
11-09 1679
Gerrit version 2.14.17 is now available. This release includes several dependency upgrades to fix CVE issues, plus a couple of other improvements. Please see the release notes for details. Release N...
Spring Security4.1.3实现拦截登录后向登录页面跳转方式(redirect或forward)返回被拦截界面...
weixin_34055910的博客
06-24 946
一、看下内部原理 简化后的认证过程分为7步: 用户访问网站,打开了一个链接(origin url)。 请求发送给服务器,服务器判断用户请求了受保护的资源。 由于用户没有登录,服务器重定向到登录页面 填写表单,点击登录 浏览器将用户名密码以表单形式发送给服务器 服务器验证用户名密码。成功,进入到下一步。否则要求用户重新认证(第三步) ...
解决:org.springframework.security.access.AccessDeniedException: Access is denied
东天里的冬天
06-30 6万+
最近在使用SpringSecurity时涉及到从数据库中获取用户,结果一直报错,错误如下 Secure object: FilterInvocation: URL: /index.jsp; Attributes: [hasRole('ROLE_USER')] 2017-06-29 23:02:27 731 [DEBUG] Previously Authenticated: org.springf
org.springframework.security.access.AccessDeniedException 不允许访问
最新发布
ekskef_sef的博客
02-27 371
检查我的WebSecurityConfigurerAdapter子类SecurityConfigWithoutUserDetail。org.springframework.security.access.AccessDeniedException: 不允许访问。* 捕捉AccessDeniedException,spring security抛出的无权限访问的异常信息。发现,我自定义的myAccessDeniedHandler类没有调用。测试spring security的权限校验功能时,
Access is denied (user is anonymous); redirecting to authentication entry point
weixin_30412167的博客
04-13 3920
Access is denied (user is anonymous); redirecting to authentication entry point org.springframework.security.access.AccessDeniedException: Access is denied at org.springframework.security.acce...
spring Security登录报错:Access is denied (user is anonymous); redirecting to authentication entry point
m0_46364526的博客
04-25 7730
错误描述 最近在做黑马的管理系统练习,在使用spring security进行登录验证时报错:Access is denied (user is anonymous); redirecting to authentication entry point 报错信息如下: 使用的spring-security.xml文件如下: 错误分析 我在网上查阅了各种导致Access is denied (user is anonymous)的解决办法,都无法解决我的问题,我转换思路,由于我是在未进入登录页面是就出现此
Access is denied (user is anonymous); redirecting to authentication entry point org.springframework.
qq_43678902的博客
04-20 8316
Access is denied (user is anonymous); redirecting to authentication entry point org.springframework.security.access.AccessDeniedException: Access is denied at org.springframework.security.access.vote...
spring security异常记录:org.springframework.security.access.AccessDeniedException: Access is denied
qq_56769991的博客
02-11 2万+
最近在做ssm项目的时候用到spring security时遇到了异常,如下所示: 15:06:28,144 DEBUG FilterSecurityInterceptor:348 - Previously Authenticated: org.springframework.security.authentication.AnonymousAuthenticationToken@52dd6d71: Principal: anonymousUser; Credentials: [PROTECTED]; .
|AffirmativeBased.java:66|decide||45||||Voter: org.springframework.security.web.access.expression.WebExpressionVoter@66ebcd8e, returned: -1 APPLICATION|DEBUG|||2023-06-12 14:55:20:198|||AuditListener.java:47|onAuditEvent||45||||AuditEvent [timestamp=2023-06-12T06:55:20.198Z, principal=anonymousUser, type=AUTHORIZATION_FAILURE, data={details=org.springframework.security.web.authentication.WebAuthenticationDetails@957e: RemoteIpAddress: 127.0.0.1; SessionId: null, type=org.springframework.security.access.AccessDeniedException, message=Access is denied}] APPLICATION|DEBUG|||2023-06-12 14:55:20:199|||ExceptionTranslationFilter.java:181|handleSpringSecurityException||45||||Access is denied (user is anonymous); redirecting to authentication entry point org.springframework.security.access.AccessDeniedException: Access is denied
06-13
这是一段 Java 代码的日志信息,看起来是使用 Spring Security 框架实现的权限控制功能出现了异常。具体来说,是在 AffirmativeBased 类的第 66 行执行了 decide 方法,返回值为 -1,表示权限检查失败,导致一个名为...
spring security部分源码分析 鉴权流程
weixin_41029286的博客
07-06 376
鉴权的流程在FilterSecurityInterceptor中 我们需要先执行登陆的操作,然后访问一个需要有权限鉴定的接口,进入org.springframework.security.web.access.intercept.FilterSecurityInterceptor#doFilter方法 进入org.springframework.security.access.intercept.AbstractSecurityInterceptor#beforeInvocation org.spring
org.springframework.security.access.AccessDeniedException: Access is denied异常
qq_33014331的博客
06-02 1100
在搭建spring oauth2.0 授权码模式demo时,使用code获取token时,一直提示这个错误,后来发现是因为配置问题: [DEBUG] ExceptionTranslationFilter - Access is denied (user is anonymous); redirecting to authentication entry point <org.springframework.security.access.AccessDeniedException: Access is
access is denied 可能的原因分析
fsh430623的专栏
07-30 5万+
access is denied 可能的原因分析 用 applicationContext security做权限控制访问, 如果出现access is denied,一般来说,有几个可能原因,一是没有权限,这好解决,分配权限就是。二是权限配置错误,这也好办,修改配置就可以。还有一个原因稍微隐蔽一点,大家细心一点就是,就是要注意,处在前面的配置的url不能与后面的配置访问权限的url重复...
Spring Security出现问题:Access is denied 及我的解决方案
热门推荐
txd2016_5_11的博客
01-24 6万+
近日使用spring security,xml文件如下: ...... <!-- 页面拦截规则 --> <http pattern="/shoplogin.html" security="none"></http> <http pattern="/loginerror.html" security="none"></http> ...
Java JWT: JSON Web Token
weixin_33730836的博客
06-17 869
  Java JWT: JSON Web Token for Java and Android JJWT aims to be the easiest to use and understand library for creating and verifying JSON Web Tokens (JWTs) on the JVM. JJWT is a Java implementation...
学习笔记随记-2019-01-11-Spring Cloud Security+Oauth2+JWT权限认证与zuul结合遇到的问题
nvluco的博客
01-13 1万+
20190111 1.学到的知识 1.1.记录问题 1.1.1回到昨天的问题,继续解决: 报错二: postman的返回结果信息如下: 将日志输出转换为debug,查看控制台日志如下: 2019-01-11 00:13:04.663 DEBUG 21056 --- [http-nio-9090-exec-6] o.s.boot.actuate.audit.listener.AuditList...
关于sping-security的Access is denied问题,可以正常登陆
u013268066的博客
02-13 2475
使用Spring Security的时候可以登陆,功能也正常使用但是启动日志报了Access is denied。找了一些回答都不是我想要的,就自己研究了一下,首先这个日志是Debug级别的,那就说明不是报错是调试才能看到的,跟进源码 public class AffirmativeBased extends AbstractAccessDecisionManager { public...
denied: requested access to the resource is denied unauthorized: authentication required
05-27
这个错误通常是因为你没有正确地登录到 Docker 镜像仓库,或者你没有上传镜像的权限。你需要使用 `docker login` 命令登录到仓库,并确保你具有上传镜像的权限。如果你已经登录但仍无法上传镜像,那可能是因为你没有在仓库中创建对应的镜像仓库或者你没有正确地指定仓库名称。另外,你还需要检查一下你的上传命令是否正确,并且你是否有足够的权限执行该命令。如果你还是无法解决问题,可以尝试重新登录或者尝试使用其他的 Docker 镜像仓库。
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值