在将我的应用升级到spring boot 2.3.4和spring security config 5.4.4之后,我面临以下异常。以及ApacheTomcat嵌入式内核9.0.45
下面是application.properties文件中与spring安全相关的配置和属性
服务器。最大http头大小=1000000
httpsecurity.formlogin().disable();
httpsecurity.httpbasic().disable();
httpsecurity.authorizerequests().anyrequest().permitall();
httpsecurity.csrf().disable();
httpsecurity.headers().frameoptions().disable();
org.owasp.esapi.errors.configurationexception:org.owasp.esapi.reference.defaultsecurityconfiguration.getintprop(defaultsecurityconfiguration.java:1265)处的httputilities.maxheadernamesize的securityconfiguration在org.owasp.esapi.reference.defaulthttputilities.setheader(defaulthttputilities.java:890)处的类型不正确com.cts.wfm.nt.util.logfilter.dofilter(logfilter.java:81)位于org.apache.catalina.core.applicationfilterchain.internaldofilter(applicationfilterchain.java:189)位于org.apache.catalina.core.applicationfilterchain.dofilter(applicationfilterchain.java:162)位于org.springframework.security.web.filterchainproxy$virtualfilterchain.dofilter(filterchainproxy.java:327)位于org.springframework.security.web.access.intercept.filtersecurityinterceptor.invoke(filtersecurityinterceptor.java:115)位于org.springframework.security.web.access.intercept.filtersecurityinterceptor.dofilter(filtersecurityinterceptor.java:81)位于org.springframework.security.web.filterchainproxy$virtualfilterchain.dofilter(filterchainproxy.java:336),位于org.springframework.security.web.access.exceptiontranslationfilter.dofilter(exceptiontranslationfilter.java:119),位于org.springframework.security.web.access.exceptiontranslationfilter.dofilter(exceptiontranslationfilter.java:113)org.springframework.security.web.filterchainproxy$virtualfilterchain.dofilter(filterchainproxy.java:336)在org.springframework.security.web.sessionmanagementfilter.dofilter(sessionmanagementfilter.java:126)在org.springframework.security.web.session.sessionmanagementfilter.dofilter(sessionmanagementfilter.java:81)在org.springframework.security.web.filterchainproxy$virtualfilterchain.dofilter(filterchainproxy.java:336)位于org.springframework.security.web.authenticationfilter.dofilter(anonymousauthenticationfilter.java:105)位于org.springframework.security.web.filterchainproxy$virtualfilter.dofilter(filterchainproxy.java:336)org.springframework.security.web.servletapi.securitycontextholderawarerequestfilter.dofilter(securitycontextholderawarerequestfilter.java:149)位于org.springframework.security.web.filterchainproxy$virtualfilterchain.dofilter(filterchainproxy.java:336)位于org.springframework.security.web.savedrequest.RequestCacheAwarRefilter.dofilter(RequestCacheAwarRefilter.java:63)位于org.springframework.security.web.filterchainproxy$virtualfilterchain.dofilter(filterchainproxy.java:336)位于org.springframework.security.web.authentication.logout.logoutfilter.dofilter(logoutfilter.java:103)位于org.springframework.security.web.authentication.logout.logoutfilter.dofilter(logoutfilter.java:89)位于org.springframework.security.web.filterchainproxy$virtualfilterchain.dofilter(filterchainproxy.java:336)位于org.springframework.security.web.header.headerwriterfilter.doheadersafter(headerwriterfilter.java:90)位于org.springframework.security.web.header.headerwriterfilter.dofilternel(headerwriterfilter.java:75)位于org.springframework.web.filter.onceperrequestfilter.dofilter(onceperrequestfilter.java:119)位于org.springframework.security.web.filterchainproxy$virtualfilter.dofilter(filter-chainproxy.java:336)位于org.springframework.security.web.context.securitycontextpersistencefilter.dofilter(securitycontextpersistencefilter.java:110)位于org.springframework.security.web.context.securitycontextpersistencefilter.dofilter(securitycontextpersistencefilter.java:80)位于org.springframework.security.web.filterchainproxy$virtualfilterchain.dofilter(filterchainproxy.java:336)位于org.springframework.security.web.context.request.async.webasync.webasyncmanagerintegrationfilter.dofilter(webasyncmanagermanagerintergationfilter.java:55)位于org.springframework.web.filter.onceperrequestfilter.oncerequestfilter.java:119位于org.springframework.security.web.filterchainproxy$virtualfilterchainproxy.dofilter(filterchainproxy.java:336),位于org.springframework.security.web.filterchainproxy.dofilterinternal(filterchainproxy.java:211),位于org.springframework.security.web.filterchainproxy.dofilter(filterchainproxy.java:183)org.springframework.web.filter.delegatingfilterproxy.invokedelegate(delegatingfilterproxy.java:358)位于org.springframework.web.filter.delegatingfilterproxy.dofilter(delegatingfilterproxy.java:271)位于org.apache.catalina.core.applicationfilterchain.internaldofilter(applicationfilterchain.java:189)位于org.springframework.web.filter.characterencodingfilter.dofilterinternal(characterencodingfilter.java:201)的org.springframework.web.filter.onceperrequestfilter.dofilter(applicationfilterchain.java:162)位于org.apache.catalina.core.applicationfilterchain.internaldofilter(applicationfilterchain.java:189)位于org.apache.catalina.core.applicationfilterchain.dofilter(applicationfilterchain.java:162)位于org.apache.catalina.core.standardwrappervalve.invoke(standardwrappervalve.java:202)位于org.apache.catalina.core.standardcontextvalve.invoke(standardcontextvalve.java:97)在org.apache.catalina.authenticator.authenticatorbase.invoke(authenticatorbase.java:542)在org.apache.catalina.core.standardhostvalve.invoke(standardhostvalve.java:143)在org.apache.catalina.valves.errorreportvalve.invoke(errorreportvalve.java:92)在org.apache.catalina.core.standardenginevalve.invoke(standardenginevalve.java:78)在org.apache.catalina.connector.coyoteadapter.service(coyoteadapter.java:357)在org.apache.coyote.http11.http11processor.service(http11processor.java:374)在org.apache.coyote.abstractprocessorlight.process(abstractprocessorlight.java:65)在org.apache.tomcat.util.net.nioendpoint$socketprocessor.dorun(nioendpoint.java:1707)org.apache.tomcat.util.net.socketprocessorbase.run(socketprocessorbase.java:49)java.util.concurrent.threadpoolexecutor.runworker(threadpoolexecutor.java:1149)atjava.lang.thread.run(thread.java:813)上的java.util.concurrent.threadpoolexecutor$worker.run(threadpoolexecutor.java:624)位于org.apache.tomcat.util.threads.taskthread$wrappingranable.run(taskthread.java:61)
暂无答案!
目前还没有任何答案,快来回答吧!