Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

No bean resolver registered in the context to resolve access to bean

Tags:

java

spring

spring-security

spring-el

I'm trying to implement method security using Java Config, but I'm getting a error:-

org.springframework.expression.spel.SpelEvaluationException: EL1057E:(pos 1): No bean resolver registered in the context to resolve access to bean 'appPermissionEvaluator'

The method is:-

@PreAuthorize("@appPermissionEvaluator.hasSystemPermission()")
public String something() {
    ...
}

The Config class definition is (MethodSecurityConfig.java):-

@Configuration
@EnableGlobalMethodSecurity(prePostEnabled = true)
public class MethodSecurityConfig extends GlobalMethodSecurityConfiguration {

    @Bean
    public AppPermissionEvaluator appPermissionEvaluator() {
        return new AppPermissionEvaluator();
    }

    @Override
    protected MethodSecurityExpressionHandler createExpressionHandler() {
        DefaultMethodSecurityExpressionHandler expressionHandler =
                new DefaultMethodSecurityExpressionHandler();
        expressionHandler.setPermissionEvaluator(appPermissionEvaluator());
        return expressionHandler;
    }

    ...
}

I checked that I'm able to autowire the bean in the same class, also I found the default hasPermission() methods are working as I've implemented them, the only problem is reading the bean from SpEL. I'm not sure what's wrong. Any Pointers?

I'm using Spring 4.1.5 and Spring security 3.2.7

like image 293
Kaushik Avatar asked Mar 29 '15 10:03

Kaushik

1 Answers

You need to ensure that you set the ApplicationContext on the DefaultMethodSecurityExpresssionHandler. For example:

@Autowired private ApplicationContext context;  // ...  @Override protected MethodSecurityExpressionHandler expressionHandler() {     DefaultMethodSecurityExpressionHandler expressionHandler =             new DefaultMethodSecurityExpressionHandler();     expressionHandler.setPermissionEvaluator(appPermissionEvaluator());      // !!!     expressionHandler.setApplicationContext(context);      return expressionHandler; }

Alternatively and more concisely, if you define a single PermissionEvaluator as a Bean and Spring Security will automatically pick it up (no need to override expressionHandler()). For example:

@Bean public PermissionEvaluator appPermissionEvaluator() {     ... }
like image 69
Rob Winch Avatar answered Sep 28 '22 19:09

Rob Winch
Sign in to Comment

Related questions

How to get Javalin's Jetty http server to bind/listen on a specific address/port?
OpenJDK 11 java.lang.ClassCastException: class sun.font.CompositeFont cannot be cast to class sun.font.PhysicalFont
Prune table to 500 records in JPQL
How to Skip All Integration Tests (-DskipITs) and One Unit Test mvn Command Line
WARN Session 0x0 for server null, unexpected error, closing socket connection and attempting reconnect
Which instance method is called when super type method calls method present in both super type and subtype
Possible way to write below code in java 8
Does function returning a volatile variable need synchronization?
In Eclipse, what is 'Enclosing type" when creating a class?
GSON converting Integer value to Boolean value dynamically for specific fields
Springboot @ConfigurationProperties nested yaml properties don't load
Use variable name semantically in Java
TelephonyManager.EXTRA_INCOMING_NUMBER is null in android 9 [duplicate]
java OOM on creating 2 arrays of one billion ints
what's purpose of local variable for a member variable?
Spring Java app not finding the keystore file
How to configure logstash in docker compose?
How to fix problem with max connections exceed?
OutOfMemoryError reading a 174 Mb text file with large rows
System.out closed? Can I reopen it?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!