[Spring Boot] Security InMemory "PasswordEncoder Error"

Notice

Total (1762)

3D Game Programming (7)

Adobe Flash (175)

Algorithm (144)

Aseprite (18)

BatchScript (3)

Book (6)

Blender3D (51)

BlockChain,NFT,Web3... (36)

Data structure (9)

DB (7)

Design Patterns (14)

Docker (2)

ETC (106)

Game Design (2)

General (13)

Git (6)

Google Firebase (0)

Graphic (13)

Graphics Programming (5)

GraphQL (0)

HTML, CSS (77)

iOS (54)

Javascript (10)

Machine Learning (1)

Marketing (1)

Math (7)

NCS (0)

Private (41)

Project (29)

Python (4)

Photon Network (10)

PUG (Jade) (8)

Purchases (1)

React (25)

Sever (41)

ShortCuts (2)

Synology (0)

Unity3D (607)

Unreal Engine (0)

UML (13)

Udemy (3)

VR (100)

POE (Path of Exile) (2)

Zepeto (11)

NCS 보수교육 (0)

Tags
BOJ 유니티 VR 솔리디티 유니티 mlagent OpenXR 블록체인 유니티 UI XR Interaction Toolkit Solidity Unity VR 백준 ml-agents 오큘러스 이더리움 Unity UI Toolkit robotlegs Oculus SWIFT ml-agent Unity3d XR Toolkit 알고리즘 유니티 오큘러스 Oculus Integration VR c# 코테 mlagents
Recent Entries
Recent Comments
Recent Trackbacks
Archives

Links
Try & Error.
상상 너머 그 무언가....
Powerful Programming.
흑기사의 방랑일지.
이펙트세상.
To be a programmer....
작업장.
Rusi's Blog.
러브핑이의 일본애니 정보관.
게임 개발 포에버.
Min-gu, Kim.
Unity3D.
흑기사의 방랑일지.
알콜코더의 미투데이 로그.
Total :
Today :
Yesterday :
티스토리 가입하기!

[Spring Boot] Security InMemory "PasswordEncoder Error"

Sever 2018. 5. 3. 12:29

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
package demo.config;
 
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
 
@Configuration
public class SecurityConfig extends WebSecurityConfigurerAdapter {
    //인메모리 설정 
    @Autowired
    public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
        //auth.inMemoryAuthentication().withUser("admin").password("1234").roles("ADMIN"); <---- Spring Boot PasswordEncoder Error
        auth.inMemoryAuthentication().withUser("admin").password("{noop}1234").roles("ADMIN");
    }
    
    protected void configure(HttpSecurity http) throws Exception {
        http.authorizeRequests()
            .antMatchers("/admin/**").hasRole("ADMIN")
            .antMatchers("/**").permitAll();
        
        http.formLogin()
            .loginPage("/login").permitAll();
    }
 
}
 
Colored by Color Scripter
cs

down voteaccepted

In spring-security-core:5.0.0.RC1, the default PasswordEncoder is built as a DelegatingPasswordEncoder. When you store the users in memory, you are providing the passwords in plain text and when trying to retrieve the encoder from the DelegatingPasswordEncoder to validate the password it can't find one that matches the way in which these passwords were stored.

Use this way to create users instead.

User.withDefaultPasswordEncoder().username("user").password("user").roles("USER").build();

You can also simply prefix {noop} to your passwords in order for the DelegatingPasswordEncoderuse the NoOpPasswordEncoder to validate these passwords. Notice that NoOpPasswordEncoder is deprecated though, as it is not a good practice to store passwords in plain text.

User.withUsername("user").password("{noop}user").roles("USER").build();

저작자표시 비영리 변경금지

'Sever' 카테고리의 다른 글

마이크로서비스 (0)	2019.01.30
카페24 node.js + mysql (0)	2019.01.10
[Spring Boot] There is no PasswordEncoder mapped for the id "null" (0)	2018.05.02
Tomcat에러 (0)	2018.04.30
[Spring Boot] [http://java.sun.com/jsp/jstl/core] cannot be resolved (0)	2018.04.30

{ 일등하이 :Unity3D }

[Spring Boot] Security InMemory "PasswordEncoder Error"

'Sever' 카테고리의 다른 글

티스토리툴바