|
|
|
|
@@ -18,7 +18,7 @@
|
|
|
|
|
|
|
|
|
|
<beans>
|
|
|
|
|
|
|
|
|
|
<bean id="filterChainProxy" class="org.acegisecurity.util.FilterChainProxy">
|
|
|
|
|
<bean id="filterChainProxy" class="org.springframework.security.util.FilterChainProxy">
|
|
|
|
|
<property name="filterInvocationDefinitionSource">
|
|
|
|
|
<value><![CDATA[
|
|
|
|
|
CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
|
|
|
|
|
@@ -28,19 +28,19 @@
|
|
|
|
|
</property>
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<bean id="httpSessionContextIntegrationFilter" class="org.acegisecurity.context.HttpSessionContextIntegrationFilter"/>
|
|
|
|
|
<bean id="httpSessionContextIntegrationFilter" class="org.springframework.security.context.HttpSessionContextIntegrationFilter"/>
|
|
|
|
|
|
|
|
|
|
<bean id="logoutFilter" class="org.acegisecurity.ui.logout.LogoutFilter">
|
|
|
|
|
<bean id="logoutFilter" class="org.springframework.security.ui.logout.LogoutFilter">
|
|
|
|
|
<constructor-arg value="/index.jsp"/> <!-- URL redirected to after logout -->
|
|
|
|
|
<constructor-arg>
|
|
|
|
|
<list>
|
|
|
|
|
<ref bean="rememberMeServices"/>
|
|
|
|
|
<bean class="org.acegisecurity.ui.logout.SecurityContextLogoutHandler"/>
|
|
|
|
|
<bean class="org.springframework.security.ui.logout.SecurityContextLogoutHandler"/>
|
|
|
|
|
</list>
|
|
|
|
|
</constructor-arg>
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<bean id="authenticationProcessingFilter" class="org.acegisecurity.ui.webapp.AuthenticationProcessingFilter">
|
|
|
|
|
<bean id="authenticationProcessingFilter" class="org.springframework.security.ui.webapp.AuthenticationProcessingFilter">
|
|
|
|
|
<property name="authenticationManager" ref="authenticationManager"/>
|
|
|
|
|
<property name="authenticationFailureUrl" value="/acegilogin.jsp?login_error=1"/>
|
|
|
|
|
<property name="defaultTargetUrl" value="/"/>
|
|
|
|
|
@@ -48,41 +48,41 @@
|
|
|
|
|
<property name="rememberMeServices" ref="rememberMeServices"/>
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<bean id="securityContextHolderAwareRequestFilter" class="org.acegisecurity.wrapper.SecurityContextHolderAwareRequestFilter"/>
|
|
|
|
|
<bean id="securityContextHolderAwareRequestFilter" class="org.springframework.security.wrapper.SecurityContextHolderAwareRequestFilter"/>
|
|
|
|
|
|
|
|
|
|
<bean id="rememberMeProcessingFilter" class="org.acegisecurity.ui.rememberme.RememberMeProcessingFilter">
|
|
|
|
|
<bean id="rememberMeProcessingFilter" class="org.springframework.security.ui.rememberme.RememberMeProcessingFilter">
|
|
|
|
|
<property name="authenticationManager" ref="authenticationManager"/>
|
|
|
|
|
<property name="rememberMeServices" ref="rememberMeServices"/>
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<bean id="anonymousProcessingFilter" class="org.acegisecurity.providers.anonymous.AnonymousProcessingFilter">
|
|
|
|
|
<bean id="anonymousProcessingFilter" class="org.springframework.security.providers.anonymous.AnonymousProcessingFilter">
|
|
|
|
|
<property name="key" value="changeThis"/>
|
|
|
|
|
<property name="userAttribute" value="anonymousUser,ROLE_ANONYMOUS"/>
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<bean id="exceptionTranslationFilter" class="org.acegisecurity.ui.ExceptionTranslationFilter">
|
|
|
|
|
<bean id="exceptionTranslationFilter" class="org.springframework.security.ui.ExceptionTranslationFilter">
|
|
|
|
|
<property name="authenticationEntryPoint">
|
|
|
|
|
<bean class="org.acegisecurity.ui.webapp.AuthenticationProcessingFilterEntryPoint">
|
|
|
|
|
<bean class="org.springframework.security.ui.webapp.AuthenticationProcessingFilterEntryPoint">
|
|
|
|
|
<property name="loginFormUrl" value="/acegilogin.jsp"/>
|
|
|
|
|
<property name="forceHttps" value="false"/>
|
|
|
|
|
</bean>
|
|
|
|
|
</property>
|
|
|
|
|
<property name="accessDeniedHandler">
|
|
|
|
|
<bean class="org.acegisecurity.ui.AccessDeniedHandlerImpl">
|
|
|
|
|
<bean class="org.springframework.security.ui.AccessDeniedHandlerImpl">
|
|
|
|
|
<property name="errorPage" value="/accessDenied.jsp"/>
|
|
|
|
|
</bean>
|
|
|
|
|
</property>
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<bean id="filterInvocationInterceptor" class="org.acegisecurity.intercept.web.FilterSecurityInterceptor">
|
|
|
|
|
<bean id="filterInvocationInterceptor" class="org.springframework.security.intercept.web.FilterSecurityInterceptor">
|
|
|
|
|
<property name="authenticationManager" ref="authenticationManager"/>
|
|
|
|
|
<property name="accessDecisionManager">
|
|
|
|
|
<bean class="org.acegisecurity.vote.AffirmativeBased">
|
|
|
|
|
<bean class="org.springframework.security.vote.AffirmativeBased">
|
|
|
|
|
<property name="allowIfAllAbstainDecisions" value="false"/>
|
|
|
|
|
<property name="decisionVoters">
|
|
|
|
|
<list>
|
|
|
|
|
<bean class="org.acegisecurity.vote.RoleVoter"/>
|
|
|
|
|
<bean class="org.acegisecurity.vote.AuthenticatedVoter"/>
|
|
|
|
|
<bean class="org.springframework.security.vote.RoleVoter"/>
|
|
|
|
|
<bean class="org.springframework.security.vote.AuthenticatedVoter"/>
|
|
|
|
|
</list>
|
|
|
|
|
</property>
|
|
|
|
|
</bean>
|
|
|
|
|
@@ -98,31 +98,31 @@
|
|
|
|
|
</property>
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<bean id="rememberMeServices" class="org.acegisecurity.ui.rememberme.TokenBasedRememberMeServices">
|
|
|
|
|
<bean id="rememberMeServices" class="org.springframework.security.ui.rememberme.TokenBasedRememberMeServices">
|
|
|
|
|
<property name="userDetailsService" ref="userDetailsService"/>
|
|
|
|
|
<property name="key" value="changeThis"/>
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<bean id="authenticationManager" class="org.acegisecurity.providers.ProviderManager">
|
|
|
|
|
<bean id="authenticationManager" class="org.springframework.security.providers.ProviderManager">
|
|
|
|
|
<property name="providers">
|
|
|
|
|
<list>
|
|
|
|
|
<ref local="daoAuthenticationProvider"/>
|
|
|
|
|
<bean class="org.acegisecurity.providers.anonymous.AnonymousAuthenticationProvider">
|
|
|
|
|
<bean class="org.springframework.security.providers.anonymous.AnonymousAuthenticationProvider">
|
|
|
|
|
<property name="key" value="changeThis"/>
|
|
|
|
|
</bean>
|
|
|
|
|
<bean class="org.acegisecurity.providers.rememberme.RememberMeAuthenticationProvider">
|
|
|
|
|
<bean class="org.springframework.security.providers.rememberme.RememberMeAuthenticationProvider">
|
|
|
|
|
<property name="key" value="changeThis"/>
|
|
|
|
|
</bean>
|
|
|
|
|
</list>
|
|
|
|
|
</property>
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<bean id="daoAuthenticationProvider" class="org.acegisecurity.providers.dao.DaoAuthenticationProvider">
|
|
|
|
|
<bean id="daoAuthenticationProvider" class="org.springframework.security.providers.dao.DaoAuthenticationProvider">
|
|
|
|
|
<property name="userDetailsService" ref="userDetailsService"/>
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<!-- UserDetailsService is the most commonly frequently Acegi Security interface implemented by end users -->
|
|
|
|
|
<bean id="userDetailsService" class="org.acegisecurity.userdetails.memory.InMemoryDaoImpl">
|
|
|
|
|
<bean id="userDetailsService" class="org.springframework.security.userdetails.memory.InMemoryDaoImpl">
|
|
|
|
|
<property name="userProperties">
|
|
|
|
|
<bean class="org.springframework.beans.factory.config.PropertiesFactoryBean">
|
|
|
|
|
<property name="location" value="/WEB-INF/users.properties"/>
|
|
|
|
|
@@ -131,6 +131,6 @@
|
|
|
|
|
</bean>
|
|
|
|
|
|
|
|
|
|
<!-- This bean is optional; it isn't used by any other bean as it only listens and logs -->
|
|
|
|
|
<bean id="loggerListener" class="org.acegisecurity.event.authentication.LoggerListener"/>
|
|
|
|
|
<bean id="loggerListener" class="org.springframework.security.event.authentication.LoggerListener"/>
|
|
|
|
|
|
|
|
|
|
</beans>
|