0

我正在使用 ExecutorService 将方法的单线程更改为多线程执行。它在里面调用 SecurityContextHolder ,抛出异常:

原因:java.lang.Exception:在安全上下文中找不到身份验证对象。在 com.LoggedInUser.getLoggedInUser(LoggedInUser.java:25) 在 com.Controller.submitRate(RateController.java:242)

我的代码:

method(){

Future<Results> future = executor.submit(new callableClass(form, request));

            if (null != future.get()) {
                rates = future.get();
            }}
}


class callableClass implements Callable<RateResults> {

    private Form form;
    private HttpServletRequest request;

    public RateShippmentCaller(Form form, HttpServletRequest request) {
        super();
        this.form = form;
        this.request = request;
    }

    @Override
    public Results call() throws Exception {
        return controller.submit(form, request);
    }

}

submit(form, request){
LoggedInUser.getLoggedInUser()
}

class LoggedInUser{
    getLoggedInUser(){
       SecurityContext **secCtx** = SecurityContextHolder.getContext();
        Authentication authentication = secCtx.getAuthentication();
        if (authentication == null) {
            throw new Exception("Authentication object not found in security context.");
        }
    }
}

请让我知道如何避免异常。secCtx 返回空值。

4

1 回答 1

2

尝试设置以下安全上下文持有者策略:

SecurityContextHolder.setStrategyName(SecurityContextHolder.MODE_INHERITABLETHREADLOCAL);

请注意,您不应该使用它,因为您有一个线程池,只有每次都创建一个新线程时。

另一种转移上下文的方法:

Runnable runnable = new Runnable() {
    public void run() {
        // you’ll be able to access the context here
    }
};
SecurityContext context = SecurityContextHolder.getContext();
DelegatingSecurityContextRunnable wrappedRunnable =
    new DelegatingSecurityContextRunnable(runnable, context);

new Thread(wrappedRunnable).start();
于 2020-04-30T19:10:54.283 回答