Eu estou trabalhando em uma aplicação web que usa Spring Security 4.0.2 para autenticar usuários. Quando eu tento fazer o login usando um usuário existente, o Spring Security me diz que a conta de usuário está desativada. Mas eu não sei como mudar isso.
Meu log:
01/26/2016 22:48:18 [http-nio-8080-exec-10]:org.springframework.jdbc.core.JdbcTemplate.execute()627 Executing prepared SQL statement [SELECT login, role FROM usuario WHERE login = ?]
01/26/2016 22:48:18 [http-nio-8080-exec-10]:org.springframework.jdbc.datasource.DataSourceUtils.doGetConnection()110 Fetching JDBC Connection from DataSource
01/26/2016 22:48:19 [http-nio-8080-exec-10]:org.springframework.jdbc.datasource.DataSourceUtils.doReleaseConnection()327 Returning JDBC Connection to DataSource
01/26/2016 22:48:19 [http-nio-8080-exec-10]:springframework.security.authentication.dao.DaoAuthenticationProvider.check()360 User account is disabled
01/26/2016 22:48:19 [http-nio-8080-exec-10]:springframework.beans.factory.support.DefaultListableBeanFactory.doGetBean()248 Returning cached instance of singleton bean 'applicationLoaderListener'
01/26/2016 22:48:19 [http-nio-8080-exec-10]:springframework.security.web.authentication.UsernamePasswordAuthenticationFilter.unsuccessfulAuthentication()350 Authentication request failed: org.springframework.security.authentication.DisabledException: User is disabled
Arquivo context:
<http auto-config="true" use-expressions="true">
<intercept-url pattern="/private/**" access="hasRole('ROLE_USER')" />
<!-- Erro aqui -->
<form-login login-page="/public/login.xhtml"
username-parameter="j_username" password-parameter="j_password"
login-processing-url="/j_spring_security_check"
authentication-failure-url="/public/login.xhtml?login_error=1"
authentication-success-handler-ref="authenticationSuccessHandler" />
<logout logout-success-url="/public/login.xhtml" />
<csrf disabled="true" />
</http>
<b:bean id="authenticationSuccessHandler"
class="br.com.jway.security.UrlAuthenticationSuccessHandler" />
<!-- Select users and user_roles from database -->
<authentication-manager>
<authentication-provider>
<password-encoder hash="md5" />
<jdbc-user-service data-source-ref="dataSource"
users-by-username-query="SELECT login,senha,role FROM usuario WHERE login = ?"
authorities-by-username-query="SELECT login, role FROM usuario WHERE login = ? " />
</authentication-provider>
</authentication-manager>
Alguém sabe como solucionar isto?