在 jhipster 中将 UserService 注入 SecurityConfiguration 导致 spring bean 循环依赖
Injecting UserService into SecurityConfiguration in jhipster leads to spring bean circular dependency
我正在尝试将 jhipster 4 应用程序配置为使用 auth0 进行身份验证。当我最初生成项目时,我选择了 JWT 选项,它似乎工作正常并提供 JWT 支持。我现在要做的是通过读取他们提供的 JWT 令牌并在第一次看到新的 auth0 用户名时创建用户来正确处理与 auth0 的集成。
为此,我计划将 UserService 注入到 JWTFilter 提供的 jhipster 中,并在第一次看到用户名时创建一个新帐户:
private UserService userService;
public JWTFilter(TokenProvider tokenProvider, UserRepository userRepository, UserService userService) {
this.tokenProvider = tokenProvider;
this.userRepository = userRepository;
this.userService = userService;
}
为了做到这一点,我必须将 UserService 添加到 JWTConfigurer 的构造函数中,并这样配置 JWTFilter:
package com.proj.security.jwt;
import com.proj.repository.UserRepository;
import com.proj.service.UserService;
import org.springframework.security.config.annotation.SecurityConfigurerAdapter;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.web.DefaultSecurityFilterChain;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
public class JWTConfigurer extends SecurityConfigurerAdapter<DefaultSecurityFilterChain, HttpSecurity> {
public static final String AUTHORIZATION_HEADER = "Authorization";
public static final String AUTHORIZATION_TOKEN = "access_token";
private TokenProvider tokenProvider;
private UserRepository userRepository;
private UserService userService;
public JWTConfigurer(TokenProvider tokenProvider, UserRepository userRepository, UserService userService) {
this.tokenProvider = tokenProvider;
this.userRepository = userRepository;
this.userService = userService;
}
@Override
public void configure(HttpSecurity http) throws Exception {
JWTFilter customFilter = new JWTFilter(tokenProvider, userRepository, userService);
http.addFilterBefore(customFilter, UsernamePasswordAuthenticationFilter.class);
}
}
最后,这必须注入到SecurityConfiguration
的构造函数中
public SecurityConfiguration(AuthenticationManagerBuilder authenticationManagerBuilder, UserDetailsService userDetailsService,
TokenProvider tokenProvider, CorsFilter corsFilter, UserRepository userRepository, UserService userService) {
this.authenticationManagerBuilder = authenticationManagerBuilder;
this.userDetailsService = userDetailsService;
this.tokenProvider = tokenProvider;
this.corsFilter = corsFilter;
this.userRepository = userRepository;
this.userService = userService;
}
并添加到 JWTConfigurer bean
private JWTConfigurer securityConfigurerAdapter() {
return new JWTConfigurer(tokenProvider, userRepository, userService);
}
但是,当我使用 maven 启动应用程序时,出现以下错误:
2017-03-13 22:41:00.816 WARN 45420 --- [ restartedMain] o.s.boot.SpringApplication : Error handling failed (Error creating bean with name 'delegatingApplicationListener' defined in class path resource [org/springframework/security/config/annotation/web/configuration/WebSecurityConfiguration.class]: BeanPostProcessor before instantiation of bean failed; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'org.springframework.cache.annotation.ProxyCachingConfiguration': Initialization of bean failed; nested exception is org.springframework.beans.factory.NoSuchBeanDefinitionException: No bean named 'org.springframework.context.annotation.ConfigurationClassPostProcessor.importRegistry' available)
2017-03-13 22:41:00.823 ERROR 45420 --- [ restartedMain] o.s.b.d.LoggingFailureAnalysisReporter :
***************************
APPLICATION FAILED TO START
***************************
Description:
The dependencies of some of the beans in the application context form a cycle:
┌─────┐
| securityConfiguration defined in file [/Users/user/work/proj/target/classes/com/proj/config/SecurityConfiguration.class]
↑ ↓
| userService defined in file [/Users/user/work/proj/target/classes/com/proj/service/UserService.class]
└─────┘
UserService 不注入 SecurityConfiguration,所以我不确定如何解决这个问题。有其他方法可以解决这个问题吗?
最后我通过混合 constructor and setter injection 为 SecurityConfiguration class 解决了这个问题:
@Configuration
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true, securedEnabled = true)
public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
private final AuthenticationManagerBuilder authenticationManagerBuilder;
private final UserDetailsService userDetailsService;
private UserRepository userRepository;
private final TokenProvider tokenProvider;
private final CorsFilter corsFilter;
private UserService userService;
public SecurityConfiguration(AuthenticationManagerBuilder authenticationManagerBuilder, UserDetailsService userDetailsService,
TokenProvider tokenProvider, CorsFilter corsFilter, UserRepository userRepository) {
this.authenticationManagerBuilder = authenticationManagerBuilder;
this.userDetailsService = userDetailsService;
this.tokenProvider = tokenProvider;
this.corsFilter = corsFilter;
this.userRepository = userRepository;
}
@Autowired
public void setUserService(UserService userService) {
this.userService = userService;
}
}
执行此操作后,我看到使用正确的参数调用构造函数,然后构造 UserService,然后按照我的需要将 SecurityConfiguration 注入 setter成为。
我正在尝试将 jhipster 4 应用程序配置为使用 auth0 进行身份验证。当我最初生成项目时,我选择了 JWT 选项,它似乎工作正常并提供 JWT 支持。我现在要做的是通过读取他们提供的 JWT 令牌并在第一次看到新的 auth0 用户名时创建用户来正确处理与 auth0 的集成。
为此,我计划将 UserService 注入到 JWTFilter 提供的 jhipster 中,并在第一次看到用户名时创建一个新帐户:
private UserService userService;
public JWTFilter(TokenProvider tokenProvider, UserRepository userRepository, UserService userService) {
this.tokenProvider = tokenProvider;
this.userRepository = userRepository;
this.userService = userService;
}
为了做到这一点,我必须将 UserService 添加到 JWTConfigurer 的构造函数中,并这样配置 JWTFilter:
package com.proj.security.jwt;
import com.proj.repository.UserRepository;
import com.proj.service.UserService;
import org.springframework.security.config.annotation.SecurityConfigurerAdapter;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.web.DefaultSecurityFilterChain;
import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
public class JWTConfigurer extends SecurityConfigurerAdapter<DefaultSecurityFilterChain, HttpSecurity> {
public static final String AUTHORIZATION_HEADER = "Authorization";
public static final String AUTHORIZATION_TOKEN = "access_token";
private TokenProvider tokenProvider;
private UserRepository userRepository;
private UserService userService;
public JWTConfigurer(TokenProvider tokenProvider, UserRepository userRepository, UserService userService) {
this.tokenProvider = tokenProvider;
this.userRepository = userRepository;
this.userService = userService;
}
@Override
public void configure(HttpSecurity http) throws Exception {
JWTFilter customFilter = new JWTFilter(tokenProvider, userRepository, userService);
http.addFilterBefore(customFilter, UsernamePasswordAuthenticationFilter.class);
}
}
最后,这必须注入到SecurityConfiguration
public SecurityConfiguration(AuthenticationManagerBuilder authenticationManagerBuilder, UserDetailsService userDetailsService,
TokenProvider tokenProvider, CorsFilter corsFilter, UserRepository userRepository, UserService userService) {
this.authenticationManagerBuilder = authenticationManagerBuilder;
this.userDetailsService = userDetailsService;
this.tokenProvider = tokenProvider;
this.corsFilter = corsFilter;
this.userRepository = userRepository;
this.userService = userService;
}
并添加到 JWTConfigurer bean
private JWTConfigurer securityConfigurerAdapter() {
return new JWTConfigurer(tokenProvider, userRepository, userService);
}
但是,当我使用 maven 启动应用程序时,出现以下错误:
2017-03-13 22:41:00.816 WARN 45420 --- [ restartedMain] o.s.boot.SpringApplication : Error handling failed (Error creating bean with name 'delegatingApplicationListener' defined in class path resource [org/springframework/security/config/annotation/web/configuration/WebSecurityConfiguration.class]: BeanPostProcessor before instantiation of bean failed; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'org.springframework.cache.annotation.ProxyCachingConfiguration': Initialization of bean failed; nested exception is org.springframework.beans.factory.NoSuchBeanDefinitionException: No bean named 'org.springframework.context.annotation.ConfigurationClassPostProcessor.importRegistry' available)
2017-03-13 22:41:00.823 ERROR 45420 --- [ restartedMain] o.s.b.d.LoggingFailureAnalysisReporter :
***************************
APPLICATION FAILED TO START
***************************
Description:
The dependencies of some of the beans in the application context form a cycle:
┌─────┐
| securityConfiguration defined in file [/Users/user/work/proj/target/classes/com/proj/config/SecurityConfiguration.class]
↑ ↓
| userService defined in file [/Users/user/work/proj/target/classes/com/proj/service/UserService.class]
└─────┘
UserService 不注入 SecurityConfiguration,所以我不确定如何解决这个问题。有其他方法可以解决这个问题吗?
最后我通过混合 constructor and setter injection 为 SecurityConfiguration class 解决了这个问题:
@Configuration
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true, securedEnabled = true)
public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
private final AuthenticationManagerBuilder authenticationManagerBuilder;
private final UserDetailsService userDetailsService;
private UserRepository userRepository;
private final TokenProvider tokenProvider;
private final CorsFilter corsFilter;
private UserService userService;
public SecurityConfiguration(AuthenticationManagerBuilder authenticationManagerBuilder, UserDetailsService userDetailsService,
TokenProvider tokenProvider, CorsFilter corsFilter, UserRepository userRepository) {
this.authenticationManagerBuilder = authenticationManagerBuilder;
this.userDetailsService = userDetailsService;
this.tokenProvider = tokenProvider;
this.corsFilter = corsFilter;
this.userRepository = userRepository;
}
@Autowired
public void setUserService(UserService userService) {
this.userService = userService;
}
}
执行此操作后,我看到使用正确的参数调用构造函数,然后构造 UserService,然后按照我的需要将 SecurityConfiguration 注入 setter成为。