SSM+SpringSecurity碰到 Access is denied

###后端数据包括用户、角色，信息都能很好的获取，就是不知道问题出在哪

Service

public interface UserService extends UserDetailsService {
}

ServiceImpl

@Service("userService")
@Transactional
public class UserServiceImpl implements UserService {

	@Autowired
	private UserDao userDao;

	@Override
	public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {

		UserInfo userInfo=userDao.findByUsername ( username );

//		User user =new User( userInfo.getUsername (),"{noop}"+ userInfo.getPassword (),getAuthority (userInfo.getRoles ()) );
		User user =new User( userInfo.getUsername (),"{noop}"+ userInfo.getPassword (),userInfo.getStatus ()== 0?false:true,true,true,true,getAuthority (userInfo.getRoles ()) );
 		return user;
	}


	public List getAuthority(List roles){

		List list = new ArrayList<> ();
		for (Role role:roles){
			list.add ( new SimpleGrantedAuthority ( "ROLE_"+role.getRoleName () ) );
		}
		return list;
	}
}

springSecurity.xml

结果就是各种

org.springframework.security.access.AccessDeniedException: **Access is denied**
	at org.springframework.security.access.vote.AffirmativeBased.decide(AffirmativeBased.java:84)
	at org.springframework.security.access.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:233)
	at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:124)
	at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:91)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:119)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:137)
	at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
	at org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:111)

基本什么办法都试过了，错误表现形式为跳转到指定的failer.jsp，希望有大佬能指点一二