Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Tree: 734dd387c6
Branches Tags
spring-security
/
samples
/
contacts
/
war
/
WEB-INF
/
contacts-servlet.xml

contacts-servlet.xml 6.9 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163 
  1. <?xml version="1.0" encoding="UTF-8"?>
    2. 

  2. <!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
    3. 

  3. 

  4. <!--
    5. 

  5.   - Application context definition for "contacts" DispatcherServlet.
    6. 

  6.   - $Id$
    7. 

  7.   -->
    8. 

  8. 

  9. <beans>
    10. 

  10. 

  11. 	<!-- ========================== WEB DEFINITIONS ======================= -->
    12. 

  12. 

  13.     <bean id="publicIndexController" class="sample.contact.PublicIndexController">
    14. 

  14.     	<property name="contactManager"><ref bean="contactManager"/></property>
    15. 

  15.  	</bean>
    16. 

  16. 

  17.     <bean id="secureIndexController" class="sample.contact.SecureIndexController">
    18. 

  18.     	<property name="contactManager"><ref bean="contactManager"/></property>
    19. 

  19.  	</bean>
    20. 

  20. 

  21.     <bean id="secureDeleteController" class="sample.contact.DeleteController">
    22. 

  22.     	<property name="contactManager"><ref bean="contactManager"/></property>
    23. 

  23.  	</bean>
    24. 

  24. 

  25.     <bean id="urlMapping" class="org.springframework.web.servlet.handler.SimpleUrlHandlerMapping">
    26. 

  26.         <property name="mappings">
    27. 

  27.             <props>
    28. 

  28.                 <prop key="/hello.htm">publicIndexController</prop>
    29. 

  29.                 <prop key="/secure/add.htm">secureAddForm</prop>
    30. 

  30.                 <prop key="/secure/index.htm">secureIndexController</prop>
    31. 

  31.                 <prop key="/secure/del.htm">secureDeleteController</prop>
    32. 

  32. 			</props>
    33. 

  33.         </property>
    34. 

  34.     </bean>
    35. 

  35. 

  36.     <bean id="addValidator" class="sample.contact.WebContactValidator"/>
    37. 

  37.     <bean id="secureAddForm" class="sample.contact.WebContactAddController">
    38. 

  38.         <property name="sessionForm"><value>true</value></property>
    39. 

  39.         <property name="commandName"><value>webContact</value></property>
    40. 

  40.         <property name="commandClass"><value>sample.contact.WebContact</value></property>
    41. 

  41.         <property name="validator"><ref bean="addValidator"/></property>
    42. 

  42.         <property name="formView"><value>add</value></property>
    43. 

  43.         <property name="successView"><value>index.htm</value></property>
    44. 

  44.         <property name="contactManager">
    45. 

  45.             <ref bean="contactManager"/>
    46. 

  46.         </property>
    47. 

  47.     </bean>
    48. 

  48. 

  49. 	<bean id="viewResolver" class="org.springframework.web.servlet.view.InternalResourceViewResolver">
    50. 

  50. 		<property name="prefix"><value>/WEB-INF/jsp/</value></property>
    51. 

  51. 		<property name="suffix"><value>.jsp</value></property>
    52. 

  52. 	</bean>
    53. 

  53. 

  54. 	<!-- =================== SECURITY SYSTEM DEFINITIONS ================== -->
    55. 

  55. 	
    56. 

  56. 	<!-- RunAsManager -->
    57. 

  57. 	<bean id="runAsManager" class="net.sf.acegisecurity.runas.RunAsManagerImpl">
    58. 

  58.      	<property name="key"><value>my_run_as_password</value></property>
    59. 

  59.  	</bean>
    60. 

  60. 

  61. 	<!-- ~~~~~~~~~~~~~~~~~~~~ AUTHENTICATION DEFINITIONS ~~~~~~~~~~~~~~~~~~ -->
    62. 

  62. 	
    63. 

  63. 	<!-- We rely on the Because the web container to authenticate the user -->
    64. 

  64. 

  65. 	<!-- Authentication provider that accepts as valid our RunAsManagerImpl created tokens -->
    66. 

  66. 	<bean id="runAsAuthenticationProvider" class="net.sf.acegisecurity.runas.RunAsImplAuthenticationProvider">
    67. 

  67.      	<property name="key"><value>my_run_as_password</value></property>
    68. 

  68.  	</bean>
    69. 

  69. 

  70. 	<!-- Authentication provider that accepts as valid any adapter-created Authentication token  -->
    71. 

  71. 	<bean id="authByAdapterProvider" class="net.sf.acegisecurity.adapters.AuthByAdapterProvider">
    72. 

  72.   		<property name="key"><value>my_password</value></property>
    73. 

  73.  	</bean>
    74. 

  74. 

  75. 	<!-- The authentication manager that iterates through our authentication providers -->
    76. 

  76. 	<bean id="providerManager" class="net.sf.acegisecurity.providers.ProviderManager">
    77. 

  77. 		<property name="providers">
    78. 

  78. 		  <list>
    79. 

  79. 		    <ref bean="runAsAuthenticationProvider"/>
    80. 

  80. 		    <ref bean="authByAdapterProvider"/>
    81. 

  81. 		  </list>
    82. 

  82. 		</property>
    83. 

  83. 	</bean>
    84. 

  84. 

  85. 	<!-- ~~~~~~~~~~~~~~~~~~~~ AUTHORIZATION DEFINITIONS ~~~~~~~~~~~~~~~~~~~ -->
    86. 

  86. 

  87. 	<!-- An access decision voter that reads ROLE_* configuaration settings -->
    88. 

  88. 	<bean id="roleVoter" class="net.sf.acegisecurity.vote.RoleVoter"/>
    89. 

  89. 

  90. 	<!-- An access decision voter that reads CONTACT_OWNED_BY_CURRENT_USER configuaration settings -->
    91. 

  91. 	<bean id="contactSecurityVoter" class="sample.contact.ContactSecurityVoter"/>
    92. 

  92. 

  93. 	<!-- An affirmative access decision manager -->
    94. 

  94. 	<bean id="affirmativeBased" class="net.sf.acegisecurity.vote.AffirmativeBased">
    95. 

  95.    		<property name="allowIfAllAbstainDecisions"><value>false</value></property>
    96. 

  96. 		<property name="decisionVoters">
    97. 

  97. 		  <list>
    98. 

  98. 		    <ref bean="roleVoter"/>
    99. 

  99. 		    <ref bean="contactSecurityVoter"/>
    100. 

  100. 		  </list>
    101. 

  101. 		</property>
    102. 

  102. 	</bean>
    103. 

  103. 

  104. 	<!-- ===================== SECURITY DEFINITIONS ======================= -->
    105. 

  105. 	
    106. 

  106. 	<bean id="publicContactManagerSecurity" class="net.sf.acegisecurity.SecurityInterceptor">
    107. 

  107.     	<property name="authenticationManager"><ref bean="providerManager"/></property>
    108. 

  108.     	<property name="accessDecisionManager"><ref bean="affirmativeBased"/></property>
    109. 

  109.     	<property name="runAsManager"><ref bean="runAsManager"/></property>
    110. 

  110.  		<property name="methodDefinitionSource">
    111. 

  111. 			<value>
    112. 

  112. 				sample.contact.ContactManager.delete=ROLE_SUPERVISOR,RUN_AS_SERVER
    113. 

  113. 				sample.contact.ContactManager.getAllByOwner=CONTACT_OWNED_BY_CURRENT_USER,RUN_AS_SERVER
    114. 

  114. 				sample.contact.ContactManager.save=CONTACT_OWNED_BY_CURRENT_USER,RUN_AS_SERVER
    115. 

  115. 				sample.contact.ContactManager.getById=ROLE_TELLER,RUN_AS_SERVER
    116. 

  116. 			</value>
    117. 

  117. 		</property>
    118. 

  118. 	</bean>
    119. 

  119. 

  120. 	<!-- We expect all callers of the backend object to hold the role ROLE_RUN_AS_SERVER -->
    121. 

  121. 	<bean id="backendContactManagerSecurity" class="net.sf.acegisecurity.SecurityInterceptor">
    122. 

  122.     	<property name="authenticationManager"><ref bean="providerManager"/></property>
    123. 

  123.     	<property name="accessDecisionManager"><ref bean="affirmativeBased"/></property>
    124. 

  124.     	<property name="runAsManager"><ref bean="runAsManager"/></property>
    125. 

  125.  		<property name="methodDefinitionSource">
    126. 

  126. 			<value>
    127. 

  127. 				sample.contact.ContactManager.delete=ROLE_RUN_AS_SERVER
    128. 

  128. 				sample.contact.ContactManager.getAllByOwner=ROLE_RUN_AS_SERVER
    129. 

  129. 				sample.contact.ContactManager.save=ROLE_RUN_AS_SERVER
    130. 

  130. 				sample.contact.ContactManager.getById=ROLE_RUN_AS_SERVER
    131. 

  131. 			</value>
    132. 

  132. 		</property>
    133. 

  133. 	</bean>
    134. 

  134. 

  135. 	<!-- ======================= BUSINESS DEFINITIONS ===================== -->
    136. 

  136. 

  137. 	<bean id="contactManager" class="org.springframework.aop.framework.ProxyFactoryBean">
    138. 

  138.     	<property name="proxyInterfaces"><value>sample.contact.ContactManager</value></property>
    139. 

  139. 	    <property name="interceptorNames">
    140. 

  140.       	<list>
    141. 

  141.         	<value>publicContactManagerSecurity</value>
    142. 

  142.  	        <value>publicContactManagerTarget</value>
    143. 

  143.     	</list>
    144. 

  144. 	    </property>
    145. 

  145.   	</bean>
    146. 

  146. 

  147. 	<bean id="publicContactManagerTarget" class="sample.contact.ContactManagerFacade">
    148. 

  148.     	<property name="backend"><ref bean="backendContactManager"/></property>
    149. 

  149. 	</bean>
    150. 

  150. 

  151. 	<bean id="backendContactManager" class="org.springframework.aop.framework.ProxyFactoryBean">
    152. 

  152.     	<property name="proxyInterfaces"><value>sample.contact.ContactManager</value></property>
    153. 

  153. 	    <property name="interceptorNames">
    154. 

  154.       	<list>
    155. 

  155.         	<value>backendContactManagerSecurity</value>
    156. 

  156.  	        <value>backendContactManagerTarget</value>
    157. 

  157.     	</list>
    158. 

  158. 	    </property>
    159. 

  159.   	</bean>
    160. 

  160. 

  161. 	<bean id="backendContactManagerTarget" class="sample.contact.ContactManagerBackend"/>
    162. 

  162. 

  163. </beans>
    164.