diff --git a/samples/acegifier/src/webapp/WEB-INF/classes/acegi-web.xsl b/samples/acegifier/src/webapp/WEB-INF/classes/acegi-web.xsl new file mode 100644 index 0000000000..38207de1e6 --- /dev/null +++ b/samples/acegifier/src/webapp/WEB-INF/classes/acegi-web.xsl @@ -0,0 +1,117 @@ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + edu.yale.its.tp.cas.proxyUrl + + + + + + + Acegi Filter Chain Proxy + net.sf.acegisecurity.util.FilterToBeanProxy + + targetClass + net.sf.acegisecurity.util.FilterChainProxy + + + + + + + + Acegi Filter Chain Proxy + /* + + + + + + + + org.springframework.web.context.ContextLoaderListener + + + + + + + + + + + + + + + + + + contextConfigLocation + + + + + + + + + + + + + + + + + + contextConfigLocation + + + + + + + + + diff --git a/samples/acegifier/src/webapp/WEB-INF/classes/web-to-spring.xsl b/samples/acegifier/src/webapp/WEB-INF/classes/web-to-spring.xsl new file mode 100644 index 0000000000..0d23ce899b --- /dev/null +++ b/samples/acegifier/src/webapp/WEB-INF/classes/web-to-spring.xsl @@ -0,0 +1,292 @@ + + + + + + + + + + + + + + + + + + + + + ROLE_ + + , + + + + + +/**=httpSessionContextIntegrationFilter + + + ,authenticationProcessingFilter + + + ,basicProcessingFilter + + + Unsupported auth-method in web.xml, must be FORM or BASIC + + +,rememberMeProcessingFilter,anonymousProcessingFilter,securityEnforcementFilter + + + + + + + + + + + + + + + + ======================== AUTHENTICATION ======================= + + + + + + + + + + + + + + + + + + + + + superuser=password, + + + + + + + + foobar + anonymousUser,ROLE_ANONYMOUS + + + + + foobar + + + + + + + + + + + + + + springRocks + + + + + springRocks + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + Your Realm + + + + + + + + + + Make sure that these properties match your setup. In particular, remember to switch your login + form action from "j_security_check" to "j_acegi_security_check" + + + + + / + /j_acegi_security_check + + + + + + + false + + + + + + + ======================== FILTER CHAIN ======================= + + if you wish to use channel security, add "channelProcessingFilter," in front + of "httpSessionContextIntegrationFilter" in the list below + + + + CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON + PATTERN_TYPE_APACHE_ANT + + + + + + + + + + + + false + + + + + + + + An access decision voter that reads ROLE_* configuration settings + + + + + Note the order that entries are placed against the objectDefinitionSource is critical. + The FilterSecurityInterceptor will work from the top of the list down to the FIRST pattern that matches the request URL. + Accordingly, you should place MOST SPECIFIC (ie a/b/c/d.*) expressions first, with LEAST SPECIFIC (ie a/.*) expressions last. + We also include ROLE_ANONYMOUS (the anonymous role) for web.xml role-names of "*". This is obviously different from the + original intention but there isn't a direct mapping to the acegi way of doing things. You should modify the permissions as required, + removing anonymous access where necessary. + + + + + + + CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON + PATTERN_TYPE_APACHE_ANT + + + + + + + + + + + + + + * + = + + + + ROLE_ANONYMOUS, + + + + ROLE_ + + + + , + + + +