我正在关注链接http://docs.oracle.com/cd/E19798-01/821-1841/bncby/index.html来学习基于表单的身份验证。我已经完成了执行基于表单的身份验证所需的操作,但是在签入角色时我总是取假。这是我的配置。我错过了什么?
AutoBean.java
public void login(){
HttpServletRequest request = getHttpServletRequest();
boolean intutRole=request.isUserInRole("TutorialUser");
System.out.println("intutRole:"+intutRole);
System.out.println(request.getContentLength());
}
protected HttpServletRequest getHttpServletRequest(){
FacesContext fc = getFacesContext();
ExternalContext ec = fc.getExternalContext();
HttpServletRequest request = (HttpServletRequest)ec.getRequest();
return request;
}
protected FacesContext getFacesContext(){
FacesContext fc = FacesContext.getCurrentInstance();
return fc;
}
web.xml
<!-- Form Based Authentication -->
<security-constraint>
<display-name>Constraint1</display-name>
<web-resource-collection>
<web-resource-name>wrcoll</web-resource-name>
<description/>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<description/>
<role-name>TutorialUser</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<realm-name>file</realm-name>
<form-login-config>
<form-login-page>/login.xhtml</form-login-page>
<form-error-page>/error.xhtml</form-error-page>
</form-login-config>
</login-config>
<security-role>
<description/>
<role-name>TutorialUser</role-name>
</security-role>