spring - 如何使用 Spring Security 显示隐藏元素

标签 spring spring-security

我有一个按钮,我想在登录页面中显示。

所以当用户登录时我想隐藏这个按钮。我认为

<sec:authorize access="isAuthenticated()">

对此很有用,所以我在我的jsp中包含了如下内容

<sec:authorize access="not isAuthenticated()">
            <div class="pull-right">

但在登录页面以及登录后不可见。

可能是什么问题。

<http pattern="/foobar/static-wro4j/**" security="none"/>
<http pattern="/foobar/static/**" security="none"/>
<http pattern="/foobar/login*" security="none"/>
<http pattern="/foobar/syndic/**" security="none"/>
<http pattern="/foobar/register/**" security="none"/>
<http pattern="/foobar/lostpassword/**" security="none"/>

<http auto-config="true" use-expressions="true" create-session="ifRequired">
    <remember-me key="foobarRememberKey" token-validity-seconds="2592000"/>
    <intercept-url pattern="/foobar/presentation" access="permitAll()"/>
    <intercept-url pattern="/foobar/tos" access="permitAll()"/>
    <intercept-url pattern="/foobar/license" access="permitAll()"/>
    <intercept-url pattern="/foobar/404-error" access="permitAll()"/>
    <intercept-url pattern="/foobar/500-error" access="permitAll()"/>
    <intercept-url pattern="/foobar/rest/users" method="POST" access="permitAll()"/>
    <intercept-url pattern="/metrics/**" access="hasRole('ROLE_ADMIN')"/>
    <intercept-url pattern="/**" access="isAuthenticated()"/>

    <form-login
            login-processing-url="/foobar/authentication"
            login-page="/foobar/login"
            authentication-failure-url="/foobar/login?action=loginFailure"
            default-target-url="/foobar/"
            authentication-success-handler-ref="foobarAuthenticationSuccessHandler"/>
    <http-basic/>
    <logout logout-url="/foobar/logout"
            logout-success-url="/foobar/login"/>

    <openid-login authentication-failure-url="/foobar/login?action=loginFailure"
                  user-service-ref="openIdAutoRegisteringUserDetailsService">
        <!-- Only Google Apps is supported -->
        <attribute-exchange identifier-match="https://www.google.com/.*">
            <openid-attribute name="email" type="http://axschema.org/contact/email" required="true" count="1"/>
            <openid-attribute name="firstname" type="http://axschema.org/namePerson/first" required="true"/>
            <openid-attribute name="lastname" type="http://axschema.org/namePerson/last" required="true"/>
        </attribute-exchange>
    </openid-login>
</http>

最佳答案

确保您已在 JSP 中包含 Spring Security 标记库:

<%@ taglib prefix="sec" uri="http://www.springframework.org/security/tags" %>

在您的安全配置中包括:

<beans:bean class="org.springframework.security.web.access.expression.DefaultWebSecurityExpressionHandler"/>

然后使用authorize标签:

<sec:authorize access="isAuthenticated()">
   <!-- Content for Authenticated users -->  
</sec:authorize>

<sec:authorize access="isAnonymous()">
   <!-- Content for Unauthenticated users -->  
</sec:authorize>

关于spring - 如何使用 Spring Security 显示隐藏元素,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/18149196/

上一篇:c# - 当单个对象属性为字符串时,如何防止将其转换为 DateTime

下一篇:java - java中如何通过soap头传递多个参数?

相关文章:

java - 如何通过 Spring 框架从数据库加载应用程序属性 (v4.0.3)

rest - 注销api错误-Grails中的Rest Spring Security插件

grails - 我如何将 spring 安全配置从 application.groovy 转换为 application.yml

java - 配置问题(HttpSecurity http)错误 : Can't configure antMatchers after anyRequest

java - 当响应代码为 401 时,ClientHttpResponse.getBody() 抛出 ResourceAccessException

spring - 在 Camel Marshal 和 Unmarshal 标签中使用 Spring 表达式语言

java - Spring MDP - 如何在收到错误消息时将其关闭

java - 使用 Spring JdbcTemplate 获取 List<String>

java - Spring Security 和 Multi-Tenancy /REST -> 如何?最佳实践?引用应用程序?

maven - 为什么我的项目只有在发布到谷歌服务器后才会失败?

©2024 IT工具网  联系我们