Почетна Преглед Помоћ
Регистрација Пријавите се
github
/
spring-security
огледало од https://github.com/spring-projects/spring-security
2
0
Креирај огранак 0
Датотеке Дискусије 0 Вики
Дрво: fac07ba8ff
Гране Ознаке
spring-security
/
samples
/
tutorial
/
src
/
main
/
webapp
/
WEB-INF
/
applicationContext-security.xml

applicationContext-security.xml 2.6 KB
Историја Датотека

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162 
  1. <?xml version="1.0" encoding="UTF-8"?>
    2. 

  2. 

  3. <!--
    4. 

  4.   - Sample namespace-based configuration
    5. 

  5.   -
    6. 

  6.   - $Id$
    7. 

  7.   -->
    8. 

  8. 

  9. <beans:beans xmlns="http://www.springframework.org/schema/security"
    10. 

  10.     xmlns:beans="http://www.springframework.org/schema/beans"
    11. 

  11.     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    12. 

  12.     xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
    13. 

  13.                         http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-3.0.xsd">
    14. 

  14. 

  15.     <global-method-security pre-post-annotations="enabled">
    16. 

  16.         <!-- AspectJ pointcut expression that locates our "post" method and applies security that way
    17. 

  17.         <protect-pointcut expression="execution(* bigbank.*Service.post*(..))" access="ROLE_TELLER"/>
    18. 

  18.         -->
    19. 

  19.     </global-method-security>
    20. 

  20. 

  21.     <http use-expressions="true">
    22. 

  22.         <intercept-url pattern="/secure/extreme/**" access="hasRole('ROLE_SUPERVISOR')"/>
    23. 

  23.         <intercept-url pattern="/secure/**" access="isAuthenticated()" />
    24. 

  24.         <!-- Disable web URI authorization, as we're using <global-method-security> and have @Secured the services layer instead
    25. 

  25.         <intercept-url pattern="/listAccounts.html" access="isRememberMe()" />
    26. 

  26.         <intercept-url pattern="/post.html" access="hasRole('ROLE_TELLER')" />
    27. 

  27.         -->
    28. 

  28.         <intercept-url pattern="/**" access="permitAll" />
    29. 

  29.         <form-login />
    30. 

  30.         <logout />
    31. 

  31.         <remember-me />
    32. 

  32. <!--
    33. 

  33.     Uncomment to enable X509 client authentication support
    34. 

  34.         <x509 />
    35. 

  35. -->
    36. 

  36.         <!-- Uncomment to limit the number of sessions a user can have -->
    37. 

  37.         <session-management>
    38. 

  38.             <concurrency-control max-sessions="1" error-if-maximum-exceeded="true" />
    39. 

  39.         </session-management>
    40. 

  40. 

  41.     </http>
    42. 

  42. 

  43.     <!--
    44. 

  44.     Usernames/Passwords are
    45. 

  45.         rod/koala
    46. 

  46.         dianne/emu
    47. 

  47.         scott/wombat
    48. 

  48.         peter/opal
    49. 

  49.     -->
    50. 

  50.     <authentication-manager>
    51. 

  51.         <authentication-provider>
    52. 

  52.             <password-encoder hash="md5"/>
    53. 

  53.             <user-service>
    54. 

  54.                 <user name="rod" password="a564de63c2d0da68cf47586ee05984d7" authorities="ROLE_SUPERVISOR, ROLE_USER, ROLE_TELLER" />
    55. 

  55.                 <user name="dianne" password="65d15fe9156f9c4bbffd98085992a44e" authorities="ROLE_USER,ROLE_TELLER" />
    56. 

  56.                 <user name="scott" password="2b58af6dddbd072ed27ffc86725d7d3a" authorities="ROLE_USER" />
    57. 

  57.                 <user name="peter" password="22b5c9accc6e1ba628cedc63a72d57f8" authorities="ROLE_USER" />
    58. 

  58.             </user-service>
    59. 

  59.         </authentication-provider>
    60. 

  60.     </authentication-manager>
    61. 

  61. 

  62. </beans:beans>
    63.