Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Tree: a8215fa2cb
Branches Tags
spring-security
/
samples
/
preauth
/
src
/
main
/
webapp
/
WEB-INF
/
applicationContext-security.xml

applicationContext-security.xml 5.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103 
  1. <?xml version="1.0" encoding="UTF-8"?>
    2. 

  2. 

  3. <!--
    4. 

  4.   - Sample namespace-based configuration
    5. 

  5.   -
    6. 

  6.   - $Id: applicationContext-security-ns.xml 2396 2007-12-23 16:36:44Z luke_t $
    7. 

  7.   -->
    8. 

  8. 

  9. <beans xmlns="http://www.springframework.org/schema/beans"
    10. 

  10.     xmlns:sec="http://www.springframework.org/schema/security"
    11. 

  11.     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    12. 

  12.     xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.0.xsd
    13. 

  13.                         http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-2.0.1.xsd">
    14. 

  14. 

  15.     <bean id="filterChainProxy" class="org.springframework.security.web.FilterChainProxy">
    16. 

  16.         <sec:filter-chain-map path-type="ant">
    17. 

  17.             <sec:filter-chain pattern="/**" filters="sif,j2eePreAuthFilter,logoutFilter,etf,fsi"/>
    18. 

  18.         </sec:filter-chain-map>
    19. 

  19.     </bean>
    20. 

  20. 

  21.     <bean id="sif" class="org.springframework.security.web.context.SecurityContextPersistenceFilter"/>
    22. 

  22. 

  23.     <sec:authentication-manager alias="authenticationManager" />
    24. 

  24. 

  25.     <bean id="preAuthenticatedAuthenticationProvider" class="org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider">
    26. 

  26.         <sec:custom-authentication-provider />
    27. 

  27.         <property name="preAuthenticatedUserDetailsService" ref="preAuthenticatedUserDetailsService"/>
    28. 

  28.     </bean>
    29. 

  29. 

  30.     <bean id="preAuthenticatedUserDetailsService"
    31. 

  31.             class="org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesUserDetailsService"/>
    32. 

  32. 

  33.     <bean id="j2eePreAuthFilter" class="org.springframework.security.web.authentication.preauth.j2ee.J2eePreAuthenticatedProcessingFilter">
    34. 

  34.         <property name="authenticationManager" ref="authenticationManager"/>
    35. 

  35.         <property name="authenticationDetailsSource" ref="authenticationDetailsSource"/>
    36. 

  36.     </bean>
    37. 

  37. 

  38.     <bean id="preAuthenticatedProcessingFilterEntryPoint"
    39. 

  39.             class="org.springframework.security.web.authentication.Http403ForbiddenEntryPoint"/>
    40. 

  40. 

  41.     <bean id="logoutFilter" class="org.springframework.security.web.authentication.logout.LogoutFilter">
    42. 

  42.         <constructor-arg value="/"/>
    43. 

  43.         <constructor-arg>
    44. 

  44.             <list>
    45. 

  45.                 <bean class="org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler"/>
    46. 

  46.             </list>
    47. 

  47.         </constructor-arg>
    48. 

  48.     </bean>
    49. 

  49. 

  50.     <bean id="authenticationDetailsSource" class="org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource">
    51. 

  51.         <property name="mappableRolesRetriever" ref="j2eeMappableRolesRetriever"/>
    52. 

  52.         <property name="userRoles2GrantedAuthoritiesMapper" ref="j2eeUserRoles2GrantedAuthoritiesMapper"/>
    53. 

  53.     </bean>
    54. 

  54. 

  55.     <bean id="j2eeUserRoles2GrantedAuthoritiesMapper" class="org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper">
    56. 

  56.         <property name="convertAttributeToUpperCase" value="true"/>
    57. 

  57.     </bean>
    58. 

  58. 

  59.     <bean id="j2eeMappableRolesRetriever" class="org.springframework.security.web.authentication.preauth.j2ee.WebXmlMappableAttributesRetriever">
    60. 

  60. 

  61.     <property name="webXmlInputStream"><bean factory-bean="webXmlResource" factory-method="getInputStream"/>
    62. 

  62.     </property>
    63. 

  63.     </bean>
    64. 

  64. 

  65.     <bean id="webXmlResource" class="org.springframework.web.context.support.ServletContextResource">
    66. 

  66.         <constructor-arg ref="servletContext"/>
    67. 

  67.         <constructor-arg value="/WEB-INF/web.xml"/>
    68. 

  68.     </bean>
    69. 

  69. 

  70.     <bean id="servletContext" class="org.springframework.web.context.support.ServletContextFactoryBean"/>
    71. 

  71. 

  72.     <bean id="etf" class="org.springframework.security.web.access.ExceptionTranslationFilter">
    73. 

  73.         <property name="authenticationEntryPoint" ref="preAuthenticatedProcessingFilterEntryPoint"/>
    74. 

  74.     </bean>
    75. 

  75. 

  76.     <bean id="httpRequestAccessDecisionManager" class="org.springframework.security.access.vote.AffirmativeBased">
    77. 

  77.         <property name="allowIfAllAbstainDecisions" value="false"/>
    78. 

  78.         <property name="decisionVoters">
    79. 

  79.             <list>
    80. 

  80.                 <ref bean="roleVoter"/>
    81. 

  81.             </list>
    82. 

  82.         </property>
    83. 

  83.     </bean>
    84. 

  84. 

  85.     <bean id="fsi" class="org.springframework.security.web.access.intercept.FilterSecurityInterceptor">
    86. 

  86.         <property name="authenticationManager" ref="authenticationManager"/>
    87. 

  87.         <property name="accessDecisionManager" ref="httpRequestAccessDecisionManager"/>
    88. 

  88.         <property name="securityMetadataSource">
    89. 

  89.             <sec:filter-invocation-definition-source>
    90. 

  90.                 <sec:intercept-url pattern="/secure/extreme/**" access="ROLE_SUPERVISOR"/>
    91. 

  91.                 <sec:intercept-url pattern="/secure/**" access="ROLE_USER"/>
    92. 

  92.                 <sec:intercept-url pattern="/**" access="ROLE_USER"/>
    93. 

  93.             </sec:filter-invocation-definition-source>
    94. 

  94.         </property>
    95. 

  95.     </bean>
    96. 

  96. 

  97.     <bean id="roleVoter" class="org.springframework.security.access.vote.RoleVoter"/>
    98. 

  98. 

  99.     <bean id="securityContextHolderAwareRequestFilter" class="org.springframework.security.web.wrapper.SecurityContextHolderAwareRequestFilter">
    100. 

  100.         <property name="wrapperClass" value="org.springframework.security.web.wrapper.SecurityContextHolderAwareRequestWrapper"/>
    101. 

  101.     </bean>
    102. 

  102. 

  103. </beans>
    104.