Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Các tập tin Các vấn đề 0 Wiki
Tree: d4defb10fe
Branches Tags
spring-security
/
samples
/
contacts
/
src
/
main
/
webapp
/
WEB-INF
/
applicationContext-security.xml

applicationContext-security.xml 2.3 KB
Lịch sử Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647 
  1. <?xml version="1.0" encoding="UTF-8"?>
    2. 

  2. <!--
    3. 

  3.   - Application context containing authentication, channel
    4. 

  4.   - security and web URI beans.
    5. 

  5.   -
    6. 

  6.   - Only used by "filter" artifact.
    7. 

  7.   -
    8. 

  8.   - $Id: applicationContext-acegi-security.xml 1425 2006-04-28 06:43:50Z benalex $
    9. 

  9.   -->
    10. 

  10. 

  11. <b:beans xmlns="http://www.springframework.org/schema/security"
    12. 

  12.     xmlns:b="http://www.springframework.org/schema/beans"
    13. 

  13.     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    14. 

  14.     xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.0.xsd
    15. 

  15.                         http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-2.0.1.xsd">
    16. 

  16. 

  17. 

  18.     <http auto-config="true" realm="Contacts Realm">
    19. 

  19.         <intercept-url pattern="/" access="IS_AUTHENTICATED_ANONYMOUSLY"/>
    20. 

  20.         <intercept-url pattern="/index.jsp" access="IS_AUTHENTICATED_ANONYMOUSLY"/>
    21. 

  21.         <intercept-url pattern="/hello.htm" access="IS_AUTHENTICATED_ANONYMOUSLY"/>
    22. 

  22.         <intercept-url pattern="/login.jsp*" access="IS_AUTHENTICATED_ANONYMOUSLY"/>        
    23. 

  23.         <intercept-url pattern="/switchuser.jsp" access="ROLE_SUPERVISOR"/>
    24. 

  24.         <intercept-url pattern="/j_spring_security_switch_user" access="ROLE_SUPERVISOR"/>
    25. 

  25.         <intercept-url pattern="/**" access="ROLE_USER"/>
    26. 

  26. 

  27.         <form-login login-page="/login.jsp" authentication-failure-url="/login.jsp?login_error=1"/>
    28. 

  28.         <logout logout-success-url="/index.jsp"/>
    29. 

  29.     </http>
    30. 

  30. 

  31.    <authentication-provider>
    32. 

  32.        <password-encoder hash="md5"/>
    33. 

  33.        <jdbc-user-service data-source-ref="dataSource"/>
    34. 

  34.    </authentication-provider>
    35. 

  35. 

  36.    <!-- Automatically receives AuthenticationEvent messages -->
    37. 

  37.    <b:bean id="loggerListener" class="org.springframework.security.event.authentication.LoggerListener"/>
    38. 

  38. 

  39.    <!-- Filter used to switch the user context. Note: the switch and exit url must be secured
    40. 

  40.         based on the role granted the ability to 'switch' to another user -->
    41. 

  41.    <!-- In this example 'rod' has ROLE_SUPERVISOR that can switch to regular ROLE_USER(s) -->
    42. 

  42.    <b:bean id="switchUserProcessingFilter" class="org.springframework.security.ui.switchuser.SwitchUserProcessingFilter" autowire="byType">
    43. 

  43.        <custom-filter position="SWITCH_USER_FILTER"/>       
    44. 

  44.        <b:property name="targetUrl" value="/secure/index.htm"/>
    45. 

  45.    </b:bean>
    46. 

  46. 

  47. </b:beans>
    48.