spring security 使用记录

Bad credentials

org.springframework.security.authentication.BadCredentialsException: Bad credentials
	at org.springframework.security.authentication.dao.DaoAuthenticationProvider.additionalAuthenticationChecks(DaoAuthenticationProvider.java:79)
	at org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider.authenticate(AbstractUserDetailsAuthenticationProvider.java:147)
	at org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:182)
	at org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:201)
	at org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter$AuthenticationManagerDelegator.authenticate(WebSecurityConfigurerAdapter.java:518)

配置类

保证上下文使用的加密工具是一样的

 @Bean
 public PasswordEncoder passwordEncoder() {
       return new BCryptPasswordEncoder();
 }

@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true)
public class SpringSecurityConfig extends WebSecurityConfigurerAdapter {
	@Override
    protected void configure(AuthenticationManagerBuilder auth) throws Exception {
        // 手动添加BCryptPasswordEncoder
        auth.userDetailsService(custometUserDetailService).passwordEncoder(passwordEncoder());
    }
}

密码匹配

手动根据结果修改密码

System.out.println(passwordEncoder.encode("123456"));