Inicio Explorar Ayuda
Registro Iniciar sesión
github
/
spring-security
espejo de https://github.com/spring-projects/spring-security
2
0
Fork 0
Archivos Incidencias 0 Wiki
Árbol: 3f6961d855
Ramas Etiquetas
spring-security
/
samples
/
contacts
/
etc
/
ca
/
web.xml

web.xml 4.7 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147 
  1. <?xml version="1.0" encoding="UTF-8"?>
    2. 

  2. <!DOCTYPE web-app PUBLIC '-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN' 'http://java.sun.com/dtd/web-app_2_3.dtd'>
    3. 

  3. 

  4. <!--
    5. 

  5.   - Contacts web application
    6. 

  6.   - $Id$
    7. 

  7.   - File will be copied into WAR's WEB-INF directory if using container adapter
    8. 

  8.   -->
    9. 

  9. 

  10. <web-app>
    11. 

  11. 

  12.     <display-name>Contacts Sample Application</display-name>
    13. 

  13.     
    14. 

  14. 	<description>
    15. 

  15.     	Example of an application secured using Acegi Security System for Spring.
    16. 

  16.     </description>
    17. 

  17. 

  18. 	<!--
    19. 

  19. 	  - Location of the XML file that defines the root application context
    20. 

  20. 	  - Applied by ContextLoaderListener.
    21. 

  21. 	  -->
    22. 

  22. 	<context-param>
    23. 

  23. 		<param-name>contextConfigLocation</param-name>
    24. 

  24. 		<param-value>/WEB-INF/applicationContext.xml</param-value>
    25. 

  25. 	</context-param>
    26. 

  26. 

  27.     <filter>
    28. 

  28.         <filter-name>Acegi HTTP BASIC Authorization Filter</filter-name>
    29. 

  29.         <filter-class>net.sf.acegisecurity.util.FilterToBeanProxy</filter-class>
    30. 

  30.         <init-param>
    31. 

  31.             <param-name>targetClass</param-name>
    32. 

  32.             <param-value>net.sf.acegisecurity.ui.basicauth.BasicProcessingFilter</param-value>
    33. 

  33.         </init-param>
    34. 

  34.     </filter>
    35. 

  35. 

  36.     <filter>
    37. 

  37.         <filter-name>Acegi Security System for Spring Auto Integration Filter</filter-name>
    38. 

  38.         <filter-class>net.sf.acegisecurity.ui.AutoIntegrationFilter</filter-class>
    39. 

  39.     </filter>
    40. 

  40. 

  41.     <filter-mapping>
    42. 

  42.       <filter-name>Acegi HTTP BASIC Authorization Filter</filter-name>
    43. 

  43.       <url-pattern>/*</url-pattern>
    44. 

  44.     </filter-mapping>
    45. 

  45. 

  46.     <filter-mapping>
    47. 

  47.       <filter-name>Acegi Security System for Spring Auto Integration Filter</filter-name>
    48. 

  48.       <url-pattern>/*</url-pattern>
    49. 

  49.     </filter-mapping>
    50. 

  50. 

  51. 	<!--
    52. 

  52. 	  - Loads the root application context of this web app at startup,
    53. 

  53. 	  - by default from "/WEB-INF/applicationContext.xml".
    54. 

  54. 	  - Use WebApplicationContextUtils.getWebApplicationContext(servletContext)
    55. 

  55. 	  - to access it anywhere in the web application, outside of the framework.
    56. 

  56.     -->
    57. 

  57. 	<listener>
    58. 

  58. 		<listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
    59. 

  59. 	</listener>
    60. 

  60. 

  61.   <!--
    62. 

  62.     - Servlet that dispatches request to registered handlers (Controller implementations).
    63. 

  63.     - Has its own application context, by default defined in "{servlet-name}-servlet.xml",
    64. 

  64.     - i.e. "contacts-servlet.xml".
    65. 

  65.     -
    66. 

  66.     - A web app can contain any number of such servlets.
    67. 

  67.     - Note that this web app does not have a shared root application context,
    68. 

  68.     - therefore the DispatcherServlet contexts do not have a common parent.
    69. 

  69.     -->
    70. 

  70. 	<servlet>
    71. 

  71. 		<servlet-name>contacts</servlet-name>
    72. 

  72. 		<servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
    73. 

  73. 		<load-on-startup>1</load-on-startup>
    74. 

  74. 	</servlet>
    75. 

  75. 

  76. 	<servlet>
    77. 

  77. 		<servlet-name>caucho</servlet-name>
    78. 

  78. 		<servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
    79. 

  79. 		<load-on-startup>2</load-on-startup>
    80. 

  80. 	</servlet>
    81. 

  81. 

  82.   <!--
    83. 

  83.     - Maps the contacts dispatcher to /*.
    84. 

  84.     -
    85. 

  85.    -->
    86. 

  86. 	<servlet-mapping>
    87. 

  87.     	<servlet-name>contacts</servlet-name>
    88. 

  88.     	<url-pattern>*.htm</url-pattern>
    89. 

  89.  	</servlet-mapping>
    90. 

  90.   
    91. 

  91.   <!--
    92. 

  92. 	- Dispatcher servlet mapping for HTTP remoting via the Caucho protocols,
    93. 

  93. 	- i.e. Hessian and Burlap (see caucho-servlet.xml for the controllers).
    94. 

  94.    -->
    95. 

  95. 	<servlet-mapping>
    96. 

  96. 		<servlet-name>caucho</servlet-name>
    97. 

  97. 		<url-pattern>/caucho/*</url-pattern>
    98. 

  98. 	</servlet-mapping>
    99. 

  99. 

  100.  	<welcome-file-list>
    101. 

  101. 		<welcome-file>index.jsp</welcome-file>
    102. 

  102. 	</welcome-file-list>
    103. 

  103. 

  104.   	<taglib>
    105. 

  105.       <taglib-uri>/spring</taglib-uri>
    106. 

  106.       <taglib-location>/WEB-INF/spring.tld</taglib-location>
    107. 

  107.   	</taglib>
    108. 

  108. 

  109.     <security-constraint>
    110. 

  110.       <display-name>Secured Area Security Constraint</display-name>
    111. 

  111.       <web-resource-collection>
    112. 

  112.          <web-resource-name>Secured Area</web-resource-name>
    113. 

  113.          <url-pattern>/secure/*</url-pattern>
    114. 

  114.       </web-resource-collection>
    115. 

  115.       <auth-constraint>
    116. 

  116.          <role-name>ROLE_TELLER</role-name>
    117. 

  117. 	     <role-name>ROLE_SUPERVISOR</role-name>
    118. 

  118.       </auth-constraint>
    119. 

  119.     </security-constraint>
    120. 

  120. 

  121.     <!-- Default login configuration using BASIC authentication -->
    122. 

  122. 	<!--
    123. 

  123. 	<login-config>
    124. 

  124.       <auth-method>BASIC</auth-method>
    125. 

  125.       <realm-name>Spring Powered Realm</realm-name>
    126. 

  126. 	</login-config>
    127. 

  127.     -->
    128. 

  128.   
    129. 

  129.     <!-- Default login configuration using form-based authentication -->
    130. 

  130.     <login-config>
    131. 

  131.       <auth-method>FORM</auth-method>
    132. 

  132.       <realm-name>Spring Powered Realm</realm-name>
    133. 

  133.       <form-login-config>
    134. 

  134.         <form-login-page>/login.jsp</form-login-page>
    135. 

  135.         <form-error-page>/login.jsp?login_error=1</form-error-page>
    136. 

  136.       </form-login-config>
    137. 

  137.     </login-config>
    138. 

  138. 

  139.     <!-- Security roles referenced by this web application -->
    140. 

  140.     <security-role>
    141. 

  141.       <role-name>ROLE_SUPERVISOR</role-name>
    142. 

  142.     </security-role>
    143. 

  143.     <security-role>
    144. 

  144.       <role-name>ROLE_TELLER</role-name>
    145. 

  145.     </security-role>    
    146. 

  146. 

  147. </web-app>
    148.