91 lines
3.7 KiB
XML
Executable File
91 lines
3.7 KiB
XML
Executable File
<?xml version="1.0" encoding="UTF-8" ?>
|
|
<beans xmlns="http://www.springframework.org/schema/beans"
|
|
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:security="http://www.springframework.org/schema/security"
|
|
xsi:schemaLocation="
|
|
http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.0.xsd
|
|
http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-2.0.2.xsd">
|
|
|
|
<description>SpringSecurity</description>
|
|
|
|
<!-- If you enable single sign-on,To security:http plus entry-point-ref="casProcessingFilterEntryPoint" -->
|
|
<security:http entry-point-ref="authenticationProcessingFilterEntryPoint">
|
|
|
|
<security:intercept-url pattern="/public/**"
|
|
filters="none" />
|
|
<security:intercept-url pattern="/api/**"
|
|
filters="none" />
|
|
<security:intercept-url pattern="/api/**"
|
|
filters="none" />
|
|
<security:logout invalidate-session="true"
|
|
logout-success-url="/login.jsp" />
|
|
<security:concurrent-session-control
|
|
max-sessions="9999" expired-url="/default.jsp" />
|
|
</security:http>
|
|
<security:authentication-provider
|
|
user-service-ref="userDetailsService">
|
|
<security:password-encoder ref="passwordEncoder">
|
|
|
|
|
|
</security:password-encoder>
|
|
</security:authentication-provider>
|
|
|
|
|
|
<bean id="authenticationProcessingFilterEntryPoint" class="security.filter.AuthenticationProcessingFilterEntryPoint">
|
|
<property name="loginFormUrl" value="/login.jsp"></property>
|
|
</bean>
|
|
|
|
<bean id="passwordEncoder"
|
|
class="org.springframework.security.providers.encoding.Md5PasswordEncoder" />
|
|
|
|
|
|
<bean id="secUserService" class="security.internal.SecUserServiceImpl">
|
|
<property name="hibernateTemplate" ref="hibernateTemplate" />
|
|
<property name="passwordEncoder" ref="passwordEncoder" />
|
|
</bean>
|
|
|
|
<bean id="authenticationProcessingFilter"
|
|
class="security.filter.AjaxableAuthenticationProcessingFilter">
|
|
<security:custom-filter position="AUTHENTICATION_PROCESSING_FILTER" />
|
|
<property name="defaultTargetUrl" value="/user_login_success.jsp" />
|
|
<property name="alwaysUseDefaultTargetUrl" value="true" />
|
|
<property name="authenticationFailureUrl" value="/login.jsp"/>
|
|
<property name="authenticationManager" ref="authenticationManager" />
|
|
</bean>
|
|
|
|
<security:authentication-manager alias="authenticationManager"/>
|
|
|
|
<!-- 角色管理 -->
|
|
<bean id="roleService" class="security.internal.RoleServiceImpl">
|
|
<property name="hibernateTemplate" ref="hibernateTemplate" />
|
|
<property name="securityAuthoritiesHolder" ref="securityAuthoritiesHolder" />
|
|
<property name="namedParameterJdbcTemplate" ref="namedParameterJdbcTemplate" />
|
|
</bean>
|
|
|
|
<bean id="securityAuthoritiesHolder"
|
|
class="security.internal.SecurityAuthoritiesHolderImpl">
|
|
<property name="hibernateTemplate" ref="hibernateTemplate" />
|
|
</bean>
|
|
|
|
<bean id="filterSecurityInterceptor"
|
|
class="org.springframework.security.intercept.web.FilterSecurityInterceptor"
|
|
autowire="byType">
|
|
<security:custom-filter before="FILTER_SECURITY_INTERCEPTOR" />
|
|
<property name="objectDefinitionSource" ref="filterInvocationDefinitionSource" />
|
|
</bean>
|
|
<bean id="filterInvocationDefinitionSource"
|
|
class="security.filter.UrlResourceFilterInvocationDefinitionSource">
|
|
<property name="securityAuthoritiesHolder" ref="securityAuthoritiesHolder" />
|
|
</bean>
|
|
|
|
<bean id="securityResourceProcessor"
|
|
class="security.internal.SecurityResourceProcessorImpl">
|
|
<property name="securityAuthoritiesHolder" ref="securityAuthoritiesHolder" />
|
|
<property name="accessDecisionManager" ref="_accessManager" />
|
|
</bean>
|
|
|
|
<bean id="resourceService"
|
|
class="security.internal.ResourceServiceImpl">
|
|
<property name="hibernateTemplate" ref="hibernateTemplate" />
|
|
</bean>
|
|
|
|
</beans> |