스프링 보안 : 잠금 및 활성화되지 않은 계정의 차이점은 무엇입니까?
https://stackoverflow.com/questions/1611365
-
05-07-2019 - |
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
Russian문제
userDetails 인터페이스에는 동일하고 잠기고 활성화 된 것으로 보이는 두 가지 속성이 있습니다.
이것들이 다른 것 중 하나가 아닌가?
해결책
이것을 찾았습니다 오래된 Acegi 블로그 - 도움이되기를 바랍니다
Disabled indicates an account has been administratively or automatically disabled for some reason. Usually some action is required to release it.
Locked indicates an account has been automatically suspended due to invalid login attempts. Usually the passage of time or (less often) requesting manual unlocking is required to release it.
The distinction is not used by Acegi Security code aside from providing more informative errors to the user. There is also an order in which different exceptions should be returned, so that a disabled or locked account for instance will not return a bad credentials exception. Refer to the JavaDocs for more details.
