Spring Security报错=>permitAll only works with HttpSecurity.authorizeRequests()
Error creating bean with name 'springSecurityFilterChain' defined in class path resource [org/springframework/security/config/annotation/web/configuration/WebSecurityConfiguration.class]:
Bean instantiation via factory method failed; nested exception is org.springframework.beans.BeanInstantiationException: Failed to instantiate [javax.servlet.Filter]:
Factory method 'springSecurityFilterChain' threw exception;
nested exception is java.lang.IllegalStateException:
permitAll only works with HttpSecurity.authorizeRequests()
重点语句:permitAll only works with HttpSecurity.authorizeRequests()
意思是说 permitAll仅适用于HttpSecurity.authorizeRequests()
查看配置代码中http后面的是不是写错了 错误示例如下
http.authorizeHttpRequests()
.antMatchers("/oauth/**","/login/**","/logout/**").permitAll()
.anyRequest().authenticated()
.and()
//表单认证全部放行
.formLogin().permitAll();
解决方案:将authorizeHttpRequests()替换成authorizeRequests()
原文链接:https://blog.csdn.net/qq_42511655/article/details/123863918