Halaman utama Jelajahi Bantuan
Daftar Masuk
github
/
spring-security
cermin dari https://github.com/spring-projects/spring-security
2
0
Fork 0
Berkas Masalah 0 Wiki
Pohon: e982e91846
Ranting Tag
spring-security
/
src
/
docbkx
/
appendix-db-schema.xml

appendix-db-schema.xml 4.3 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119 
  1. <?xml version="1.0" encoding="UTF-8"?>
    2. 

  2. <appendix version="5.0" xml:id="appendix-schema" xmlns="http://docbook.org/ns/docbook"
    3. 

  3.   xmlns:xlink="http://www.w3.org/1999/xlink" 
    4. 

  4.   xmlns:xi="http://www.w3.org/2001/XInclude">
    5. 

  5. 

  6.   <info>
    7. 

  7.     <title>Security Database Schema</title>
    8. 

  8.   </info>
    9. 

  9.   <para>
    10. 

  10.     There are various database schema used by the framework and this appendix 
    11. 

  11.     provides a single reference point to them all. You only need to 
    12. 

  12.     provide the tables for the areas of functonality you require. 
    13. 

  13.   </para>
    14. 

  14.   <para>
    15. 

  15.     DDL statements are given for the HSQLDB database. You can use these as a guideline for defining the
    16. 

  16.     schema for the database you are using.
    17. 

  17.   </para>
    18. 

  18.   
    19. 

  19.   <section>
    20. 

  20.     <title>User Schema</title>
    21. 

  21.     <para>
    22. 

  22.       The standard JDBC implementation of the <interfacename>UserDetailsService</interfacename> requires tables
    23. 

  23.       to load the password, account status (enabled or disabled) and a list of authorities (roles) for the user.
    24. 

  24. <programlisting xml:id="db_schema_users_authorities">
    25. 

  25.   create table users(
    26. 

  26.       username varchar_ignorecase(50) not null primary key,
    27. 

  27.       password varchar_ignorecase(50) not null,
    28. 

  28.       enabled boolean not null);
    29. 

  29. 

  30.   create table authorities (
    31. 

  31.       username varchar_ignorecase(50) not null,
    32. 

  32.       authority varchar_ignorecase(50) not null,
    33. 

  33.       constraint fk_authorities_users foreign key(username) references users(username));
    34. 

  34.       create unique index ix_auth_username on authorities (username,authority);;
    35. 

  35. </programlisting>      
    36. 

  36.     </para>
    37. 

  37.     
    38. 

  38.     <section>
    39. 

  39.       <title>Group Authorities</title>
    40. 

  40.       <para>
    41. 

  41.         Spring Security 2.0 introduced support for group authorities
    42. 

  42.         <programlisting xml:id="db-schema-groups">
    43. 

  43. create table groups (
    44. 

  44.   id bigint generated by default as identity(start with 0) primary key, 
    45. 

  45.   group_name varchar_ignorecase(50) not null);
    46. 

  46. 

  47. create table group_authorities (
    48. 

  48.   group_id bigint not null, 
    49. 

  49.   authority varchar(50) not null, 
    50. 

  50.   constraint fk_group_authorities_group foreign key(group_id) references groups(id));
    51. 

  51. 

  52. create table group_members (
    53. 

  53.   id bigint generated by default as identity(start with 0) primary key, 
    54. 

  54.   username varchar(50) not null, 
    55. 

  55.   group_id bigint not null, 
    56. 

  56.   constraint fk_group_members_group foreign key(group_id) references groups(id));
    57. 

  57.         </programlisting>
    58. 

  58.       </para>
    59. 

  59.     </section>
    60. 

  60.   </section>
    61. 

  61. 

  62.   <section>
    63. 

  63.     <title>Persistent Login (Remember-Me) Schema</title>
    64. 

  64.     <para>
    65. 

  65. <programlisting xml:id="db-schema-remeber-me">
    66. 

  66. create table persistent_logins (
    67. 

  67.   username varchar(64) not null, 
    68. 

  68.   series varchar(64) primary key,
    69. 

  69.   token varchar(64) not null, 
    70. 

  70.   last_used timestamp not null);
    71. 

  71. </programlisting>      
    72. 

  72.     </para>
    73. 

  73.   </section>
    74. 

  74. 

  75.   <section>
    76. 

  76.     <title>ACL Schema</title>
    77. 

  77.     <para>
    78. 

  78.       
    79. 

  79. <programlisting xml:id="dbschema-acl"> 
    80. 

  80. create table acl_sid (
    81. 

  81.   id bigint generated by default as identity(start with 100) not null primary key,
    82. 

  82.   principal boolean not null,
    83. 

  83.   sid varchar_ignorecase(100) not null,
    84. 

  84.   constraint unique_uk_1 unique(sid,principal) );
    85. 

  85. 

  86. create table acl_class (
    87. 

  87.   id bigint generated by default as identity(start with 100) not null primary key, 
    88. 

  88.   class varchar_ignorecase(100) not null, 
    89. 

  89.   constraint unique_uk_2 unique(class) );
    90. 

  90. 

  91. create table acl_object_identity (
    92. 

  92.   id bigint generated by default as identity(start with 100) not null primary key, 
    93. 

  93.   object_id_class bigint not null, 
    94. 

  94.   object_id_identity bigint not null, 
    95. 

  95.   parent_object bigint, 
    96. 

  96.   owner_sid bigint, 
    97. 

  97.   entries_inheriting boolean not null, 
    98. 

  98.   constraint unique_uk_3 unique(object_id_class,object_id_identity), 
    99. 

  99.   constraint foreign_fk_1 foreign key(parent_object)references acl_object_identity(id), 
    100. 

  100.   constraint foreign_fk_2 foreign key(object_id_class)references acl_class(id), 
    101. 

  101.   constraint foreign_fk_3 foreign key(owner_sid)references acl_sid(id) );
    102. 

  102. 

  103. create table acl_entry ( 
    104. 

  104.   id bigint generated by default as identity(start with 100) not null primary key, 
    105. 

  105.   acl_object_identity bigint not null,ace_order int not null,sid bigint not null, 
    106. 

  106.   mask integer not null,granting boolean not null,audit_success boolean not null, 
    107. 

  107.   audit_failure boolean not null,constraint unique_uk_4 unique(acl_object_identity,ace_order), 
    108. 

  108.   constraint foreign_fk_4 foreign key(acl_object_identity) references acl_object_identity(id), 
    109. 

  109.   constraint foreign_fk_5 foreign key(sid) references acl_sid(id) );
    110. 

  110. 

  111. </programlisting>      
    112. 

  112.       
    113. 

  113.       
    114. 

  114.     </para>
    115. 

  115.   </section>
    116. 

  116.   
    117. 

  117. 

  118. 

  119. </appendix>
    120.