我们正在尝试在我们的 Spring 应用程序中启用 Servlet 的 3.0“异步支持”:
在 web.xml (async-supported)true(/async-supported)中为所有 servlet 和过滤器添加。
将请求处理代码重写为
**
request.getAsyncContext().start(new Runnable() {
@Override
public void run() {
handleRequest(servlet, request, response);
}
});
**
这会导致两个问题:
运行异步代码时,Spring Security 身份验证丢失。
也没有 EntityManager/session/...。
当然,这两个问题都是由于处理程序代码没有在与创建 Runnable 的线程相同的线程中执行。理想情况下,工作线程应该从调用线程“继承” Spring 上下文。
我可以通过在构建时保存身份验证并在执行时设置它来解决 Spring Security 问题。
private final Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
try {
SecurityContextHolder.clearContext();
SecurityContextHolder.getContext().setAuthentication(authentication);
..run code here..
} finally {
SecurityContextHolder.clearContext();
}
但是,对于第二个问题,我不知道如何将会话“转移”到执行线程。对于 servlet 2.x,我们使用OpenEntityManagerInViewFilter将会话粘贴到线程。
<filter>
<filter-name>openEntityManagerInViewFilter</filter-name>
<filter-class>org.springframework.orm.jpa.support.OpenEntityManagerInViewFilter</filter-class>
<async-supported>true</async-supported>
<init-param>
<param-name>entityManagerFactoryBeanName</param-name>
<param-value>entityManagerFactory</param-value>
</init-param>
</filter>
但是现在这当然不再有意义了,因为它所附着的线程与执行请求的线程不同。
我尝试过各种版本的 Spring 3.1 和 3.2。但是没有效果。
有谁知道如何解决这个问题?最好有黑客攻击。:-)
我的web.xml
<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns="http://java.sun.com/xml/ns/javaee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
version="3.0">
<servlet>
<servlet-name>Foo</servlet-name>
<servlet-class>com.foo.Main</servlet-class>
<async-supported>true</async-supported>
</servlet>
<servlet-mapping>
<servlet-name>Foo</servlet-name>
<url-pattern>/restricted/*</url-pattern>
</servlet-mapping>
<filter>
<filter-name>openEntityManagerInViewFilter</filter-name>
<filter-class>org.springframework.orm.jpa.support.OpenEntityManagerInViewFilter</filter-class>
<async-supported>true</async-supported>
<init-param>
<param-name>entityManagerFactoryBeanName</param-name>
<param-value>entityManagerFactory</param-value>
</init-param>
</filter>
<filter>
<filter-name>springSecurityFilterChain</filter-name>
<filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
<async-supported>true</async-supported>
</filter>
<filter-mapping>
<filter-name>springSecurityFilterChain</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<listener>
<listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
</listener>
<listener>
<listener-class>org.bar.ServletInit</listener-class>
</listener>
<context-param>
<param-name>contextConfigLocation</param-name>
<param-value>/WEB-INF/applicationContext.xml</param-value>
</context-param>
<context-param>
<param-name>contextInitializerClasses</param-name>
<param-value>com.foo.SpringCtxInitializer</param-value>
</context-param>
<filter-mapping>
<filter-name>openEntityManagerInViewFilter</filter-name>
<url-pattern>/restricted/*</url-pattern>
</filter-mapping>
</web-app>