Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Tree: ad4b5c487f
Branches Tags
spring-security
/
samples
/
annotations
/
src
/
main
/
resources
/
applicationContext-annotations.xml

applicationContext-annotations.xml 4.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899 
  1. <?xml version="1.0" encoding="UTF-8"?>
    2. 

  2. <!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
    3. 

  3. <!--
    4. 

  4.  * Copyright 2004 Acegi Technology Pty Limited
    5. 

  5.  *
    6. 

  6.  * Licensed under the Apache License, Version 2.0 (the "License");
    7. 

  7.  * you may not use this file except in compliance with the License.
    8. 

  8.  * You may obtain a copy of the License at
    9. 

  9.  *
    10. 

  10.  *     http://www.apache.org/licenses/LICENSE-2.0
    11. 

  11.  *
    12. 

  12.  * Unless required by applicable law or agreed to in writing, software
    13. 

  13.  * distributed under the License is distributed on an "AS IS" BASIS,
    14. 

  14.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    15. 

  15.  * See the License for the specific language governing permissions and
    16. 

  16.  * limitations under the License.
    17. 

  17.  *
    18. 

  18.  *
    19. 

  19.  * $Id$
    20. 

  20. -->
    21. 

  21. 

  22. <beans>
    23. 

  23. 

  24. 	<!-- =================== SECURITY SYSTEM DEFINITIONS ================== -->
    25. 

  25. 

  26. 	<!-- RunAsManager -->
    27. 

  27. 	<bean id="runAsManager" class="org.springframework.security.runas.RunAsManagerImpl">
    28. 

  28.      	<property name="key"><value>my_run_as_password</value></property>
    29. 

  29.  	</bean>
    30. 

  30. 

  31. 	<!-- ~~~~~~~~~~~~~~~~~~~~ AUTHENTICATION DEFINITIONS ~~~~~~~~~~~~~~~~~~ -->
    32. 

  32. 

  33. 	<!-- This authentication provider accepts any presented TestingAuthenticationToken -->
    34. 

  34. 	<bean id="testingAuthenticationProvider" class="org.springframework.security.providers.TestingAuthenticationProvider"/>
    35. 

  35. 

  36. 	<!-- The authentication manager that iterates through our only authentication provider -->
    37. 

  37. 	<bean id="authenticationManager" class="org.springframework.security.providers.ProviderManager">
    38. 

  38. 		<property name="providers">
    39. 

  39. 		  <list>
    40. 

  40. 		    <ref local="testingAuthenticationProvider"/>
    41. 

  41. 		  </list>
    42. 

  42. 		</property>
    43. 

  43. 	</bean>
    44. 

  44. 

  45. 	<!-- ~~~~~~~~~~~~~~~~~~~~ AUTHORIZATION DEFINITIONS ~~~~~~~~~~~~~~~~~~~ -->
    46. 

  46. 

  47. 	<!-- An access decision voter that reads ROLE_* configuaration settings -->
    48. 

  48. 	<bean id="roleVoter" class="org.springframework.security.vote.RoleVoter"/>
    49. 

  49. 

  50. 	<!-- A unanimous access decision manager -->
    51. 

  51. 	<bean id="accessDecisionManager" class="org.springframework.security.vote.UnanimousBased">
    52. 

  52.    		<property name="allowIfAllAbstainDecisions"><value>false</value></property>
    53. 

  53. 		<property name="decisionVoters">
    54. 

  54. 		  <list>
    55. 

  55. 		    <ref local="roleVoter"/>
    56. 

  56. 		  </list>
    57. 

  57. 		</property>
    58. 

  58. 	</bean>
    59. 

  59. 

  60. 	<!-- ===================== SECURITY DEFINITIONS ======================= -->
    61. 

  61. 

  62. 	<bean id="attributes" class="org.springframework.security.annotation.SecurityAnnotationAttributes"/>
    63. 

  63. 

  64. 	<bean id="objectDefinitionSource" class="org.springframework.security.intercept.method.MethodDefinitionAttributes">
    65. 

  65. 		<property name="attributes"><ref local="attributes"/></property>
    66. 

  66. 	</bean>
    67. 

  67. 

  68. 	<!-- We don't validate config attributes, as it's unsupported by MethodDefinitionAttributes -->
    69. 

  69. 	<bean id="securityInterceptor" class="org.springframework.security.intercept.method.aopalliance.MethodSecurityInterceptor">
    70. 

  70.     	<property name="validateConfigAttributes"><value>false</value></property>
    71. 

  71.     	<property name="authenticationManager"><ref local="authenticationManager"/></property>
    72. 

  72.     	<property name="accessDecisionManager"><ref local="accessDecisionManager"/></property>
    73. 

  73.     	<property name="runAsManager"><ref local="runAsManager"/></property>
    74. 

  74.  		<property name="objectDefinitionSource"><ref local="objectDefinitionSource"/></property>
    75. 

  75. 	</bean>
    76. 

  76. 

  77. 	<bean id="bankService" class="sample.annotations.BankServiceImpl"/>
    78. 

  78. 

  79. 	<!--
    80. 

  80. 		This bean is a postprocessor that will automatically apply relevant advisors
    81. 

  81. 		to any bean in child factories.
    82. 

  82. 	-->
    83. 

  83. 	<bean id="autoproxy"
    84. 

  84. 		class="org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator">
    85. 

  85. 	</bean>
    86. 

  86. 

  87. 	<!--
    88. 

  88. 		AOP advisor that will automatically wire the MethodSecurityInterceptor (above)
    89. 

  89. 		into BankServiceImpl (above). The configuration attributes used are obtained
    90. 

  90. 		from the securityInterceptor.objectDefinitionSouce, which in the
    91. 

  91. 		above configuration is a JDK 5 Annotations Attributes-based source.
    92. 

  92. 	-->
    93. 

  93. 	<bean id="methodSecurityAdvisor"
    94. 

  94. 		class="org.springframework.security.intercept.method.aopalliance.MethodDefinitionSourceAdvisor"
    95. 

  95. 		autowire="constructor" >
    96. 

  96. 	</bean>
    97. 

  97. 

  98. 

  99. </beans>
    100.