QiaoDuanni
- 浏览: 135274 次
- 性别:
- 来自: 杭州
-
文章分类
最新评论
-
jacks808:
注意关闭相应的流......
Tomcat6下Log4j的log4j:ERROR Failed to rename错误解决办法 -
jacks808:
windows的默认磁盘扇区大小是4kb所以 建议把copy的 ...
Tomcat6下Log4j的log4j:ERROR Failed to rename错误解决办法 -
hnwangdan:
如何 保存treeview 的节点值呢?
build yui treeview by json -
lovepoem:
我刚好遇到需要在ubuntu10。04下面安装vss客户端的问 ...
Ubuntu下使用vss缺少'MFC42.dbg'解决办法 -
podormeijia:
配置不错,不过人不是很厚道,还要写个名字。不过不是很难找了,大 ...
自定义Eclipse颜色(黑板)
<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:security="http://www.springframework.org/schema/security"
xmlns:p="http://www.springframework.org/schema/p"
xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.0.xsd
http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-2.0.1.xsd">
<bean id="springSecurityFilterChain" class="org.springframework.security.util.FilterChainProxy">
<security:filter-chain-map path-type="ant">
<security:filter-chain pattern="/css/**" filters="none" />
<security:filter-chain pattern="/images/**" filters="none" />
<security:filter-chain pattern="/script/**" filters="none" />
<security:filter-chain pattern="/admin/denied.action" filters="none" />
<security:filter-chain pattern="/denied.action" filters="none" />
<security:filter-chain pattern="/admin/**"
filters="httpSessionContextIntegrationFilter, logoutFilter, adminAuthenticationProcessingFilter, basicProcessingFilter, securityContextHolderAwareRequestFilter, rememberMeProcessingFilter, anonymousProcessingFilter, adminExceptionTranslationFilter, sessionFixationProtectionFilter, adminFilterSecurityInterceptor" />
<security:filter-chain pattern="/**"
filters="httpSessionContextIntegrationFilter, logoutFilter, accessLogFilter, userAuthenticationProcessingFilter, basicProcessingFilter, securityContextHolderAwareRequestFilter, rememberMeProcessingFilter, anonymousProcessingFilter, userExceptionTranslationFilter, sessionFixationProtectionFilter, userFilterSecurityInterceptor" />
</security:filter-chain-map>
</bean>
<!-- ======================== Security Filters ======================= -->
<bean id="httpSessionContextIntegrationFilter" class="org.springframework.security.context.HttpSessionContextIntegrationFilter">
<property name="allowSessionCreation" value="true" />
<property name="forceEagerSessionCreation" value="false" />
<property name="contextClass" value="org.springframework.security.context.SecurityContextImpl" />
</bean>
<!-- Multi authenticationProcessingFilter -->
<bean id="adminAuthenticationProcessingFilter" class="org.springframework.security.ui.webapp.AuthenticationProcessingFilter">
<property name="rememberMeServices" ref="rememberMeServices" />
<property name="invalidateSessionOnSuccessfulAuthentication" value="true" />
<property name="authenticationManager" ref="authenticationManager" />
<property name="authenticationFailureUrl" value="/admin/logon.action?login_error=1" />
<property name="defaultTargetUrl" value="/admin/account!list.action?account.accountType=COMMON" />
<property name="filterProcessesUrl" value="/admin/j_spring_security_check" />
</bean>
<bean id="userAuthenticationProcessingFilter" class="org.springframework.security.ui.webapp.AuthenticationProcessingFilter">
<property name="rememberMeServices" ref="rememberMeServices" />
<property name="invalidateSessionOnSuccessfulAuthentication" value="true" />
<property name="authenticationManager" ref="authenticationManager" />
<property name="authenticationFailureUrl" value="/account/logon.action?login_error=1" />
<property name="defaultTargetUrl" value="/index.action" />
<property name="filterProcessesUrl" value="/j_spring_security_check" />
</bean>
<bean id="securityContextHolderAwareRequestFilter" class="org.springframework.security.wrapper.SecurityContextHolderAwareRequestFilter" />
<bean id="basicProcessingFilter" class="org.springframework.security.ui.basicauth.BasicProcessingFilter">
<property name="authenticationManager" ref="authenticationManager" />
<property name="authenticationEntryPoint" ref="basicProcessingFilterEntryPoint" />
<property name="rememberMeServices" ref="rememberMeServices" />
</bean>
<bean id="logoutFilter" class="org.springframework.security.ui.logout.LogoutFilter">
<constructor-arg value="/index.action" />
<constructor-arg>
<list>
<bean class="org.springframework.security.ui.logout.SecurityContextLogoutHandler" />
<ref local="rememberMeServices" />
</list>
</constructor-arg>
<property name="filterProcessesUrl" value="/j_spring_security_logout" />
</bean>
<bean id="rememberMeProcessingFilter" class="org.springframework.security.ui.rememberme.RememberMeProcessingFilter">
<property name="authenticationManager" ref="authenticationManager" />
<property name="rememberMeServices" ref="rememberMeServices" />
</bean>
<bean id="anonymousProcessingFilter" class="org.springframework.security.providers.anonymous.AnonymousProcessingFilter">
<property name="key" value="doesNotMatter" />
<property name="userAttribute" value="roleAnonymous, ROLE_ANONYMOUS" />
</bean>
<!-- Multi exceptionTranslationFilter -->
<bean id="adminExceptionTranslationFilter" class="org.springframework.security.ui.ExceptionTranslationFilter">
<property name="authenticationEntryPoint">
<bean class="org.springframework.security.ui.webapp.AuthenticationProcessingFilterEntryPoint">
<property name="loginFormUrl" value="/admin/logon.action" />
<property name="forceHttps" value="false" />
</bean>
</property>
<property name="accessDeniedHandler">
<bean class="com.ef.delivery.handler.AccessDeniedHandlerImpl">
<property name="deniedUrl" value="/admin/denied.action" />
</bean>
</property>
</bean>
<bean id="userExceptionTranslationFilter" class="org.springframework.security.ui.ExceptionTranslationFilter">
<property name="authenticationEntryPoint">
<bean class="org.springframework.security.ui.webapp.AuthenticationProcessingFilterEntryPoint">
<property name="loginFormUrl" value="/account/logon.action" />
<property name="forceHttps" value="false" />
</bean>
</property>
<property name="accessDeniedHandler">
<bean class="org.springframework.security.ui.AccessDeniedHandlerImpl">
<property name="errorPage" value="/denied.jsp" />
</bean>
</property>
</bean>
<bean id="sessionFixationProtectionFilter" class="org.springframework.security.ui.SessionFixationProtectionFilter" />
<bean id="accessLogFilter" class="com.ef.delivery.filters.AccessLogFilter"></bean>
<!-- ======================== Interceptor ======================= -->
<bean id="adminFilterSecurityInterceptor" class="org.springframework.security.intercept.web.FilterSecurityInterceptor">
<property name="accessDecisionManager" ref="httpRequestAccessDecisionManager" />
<property name="authenticationManager" ref="authenticationManager" />
<property name="objectDefinitionSource">
<security:filter-invocation-definition-source>
<security:intercept-url pattern="/admin/logon.action" access="ROLE_ANONYMOUS" />
<security:intercept-url pattern="/admin/*" access="ROLE_SUPERVISOR" />
</security:filter-invocation-definition-source>
</property>
</bean>
<bean id="userFilterSecurityInterceptor" class="org.springframework.security.intercept.web.FilterSecurityInterceptor">
<property name="accessDecisionManager" ref="httpRequestAccessDecisionManager" />
<property name="authenticationManager" ref="authenticationManager" />
<property name="objectDefinitionSource">
<security:filter-invocation-definition-source>
<security:intercept-url pattern="/account/shopRegister*" access="ROLE_SHOP, ROLE_SUPERVISOR" />
<security:intercept-url pattern="/myzone/*.action" access="ROLE_USER" />
<security:intercept-url pattern="/community/*!create.action" access="ROLE_USER" />
<security:intercept-url pattern="/shop/*!create.action" access="ROLE_USER" />
<security:intercept-url pattern="/**" access="IS_AUTHENTICATED_ANONYMOUSLY" />
</security:filter-invocation-definition-source>
</property>
</bean>
<!-- ======================== Dao Service ======================= -->
<bean id="securityDataSource" class="com.ef.delivery.persistence.ibatis.SecurityDaoSqlMap" />
<!-- ======================== Manager ======================= -->
<bean id="httpRequestAccessDecisionManager" class="org.springframework.security.vote.AffirmativeBased">
<property name="allowIfAllAbstainDecisions" value="false" />
<property name="decisionVoters">
<list>
<bean class="org.springframework.security.vote.RoleVoter" />
<bean class="org.springframework.security.vote.AuthenticatedVoter" />
</list>
</property>
</bean>
<bean id="authenticationManager" class="org.springframework.security.config.NamespaceAuthenticationManager">
<property name="providerBeanNames">
<list>
<value>anonymousAuthenticationProvider</value>
<value>rememberMeAuthenticationProvider</value>
<value>authenticationProvider</value>
</list>
</property>
</bean>
<!-- ======================== Entry Point ======================= -->
<bean id="basicProcessingFilterEntryPoint" class="org.springframework.security.ui.basicauth.BasicProcessingFilterEntryPoint">
<property name="realmName" value="Spring Security Application" />
</bean>
<!-- ======================== Service ======================= -->
<bean id="rememberMeServices" class="org.springframework.security.ui.rememberme.TokenBasedRememberMeServices">
<property name="userDetailsService" ref="securityDataSource" />
<property name="tokenValiditySeconds" value="1800"></property>
<property name="key" value="SpringSecured" />
</bean>
<!-- ======================== Provider ================================== -->
<bean id="anonymousAuthenticationProvider" class="org.springframework.security.providers.anonymous.AnonymousAuthenticationProvider">
<property name="key" value="doesNotMatter" />
</bean>
<bean id="rememberMeAuthenticationProvider" class="org.springframework.security.providers.rememberme.RememberMeAuthenticationProvider">
<property name="key" value="SpringSecured" />
</bean>
<bean id="authenticationProvider" class="org.springframework.security.providers.dao.DaoAuthenticationProvider">
<property name="hideUserNotFoundExceptions" value="false" />
<property name="userDetailsService" ref="securityDataSource" />
<property name="passwordEncoder">
<bean class="org.springframework.security.providers.encoding.PlaintextPasswordEncoder" />
</property>
</bean>
<!-- ======================== Message Source ================================== -->
<bean id="messageSource" class="org.springframework.context.support.ResourceBundleMessageSource">
<property name="basenames">
<list>
<value>org.springframework.security.messages</value>
</list>
</property>
</bean>
</beans>
http://protory.tistory.com/entry/Spring-Security-Multi-login-page-setting
分享到:
发表评论
-
浅淡HBase的ACID
2013-04-23 17:20 2882http://archfan.sinaapp.com/2012 ... -
activemq 性能优化
2011-05-03 10:03 2496activemq How to configure Acti ... -
svn config
2010-11-11 15:09 2314引用 ### This file configures var ... -
eclipse java 视图的好处
2010-07-12 12:04 1601Hide jars from Project Explorer ... -
Trustno1回贴:晒晒自己这学期课程..有更强大的也晒晒吧..
2010-04-29 15:39 1303WindowXP 写道 有誰能說說綫數 怎麽學? 高 ... -
华硕(asus)笔记本m50vn在ubuntu下配置fn+a快捷键
2009-12-29 09:47 2647华硕笔记本装了ubuntu以后屏幕亮度会偏暗,即使fn+f6调 ... -
ubuntu下eclipse ctrl+k快捷键冲突
2009-10-10 17:37 1910eclipse的快捷键ctrl+k(向下搜索鼠标选中的文字)不 ... -
css hack 下划线 星号
2009-09-07 11:11 2568IE6识别*和_, 不识别 !important IE7识别* ... -
回复: 大数据量导出Excel的方案
2009-07-17 15:24 2030http://www.iteye.com/post/10857 ... -
spring security 登录请求获取附加参数
2009-05-26 15:16 1888http://forum.springsource.org/s ... -
spring security中自定义authenticationProcessingFilter
2009-05-26 15:06 4563http://hszdz.iteye.com/blog/337 ... -
spring security添加验证码处理
2009-05-26 15:00 4999public class CustomAuthenticati ... -
回复: 女生学计算机 路在何方
2009-04-22 21:03 836daquan198163 写道引用培养兴趣 优于 勤奋刻苦 ... -
华硕(ASUS)M50S81VN-SL外接 Dell 2209wa出现水波纹
2009-04-12 13:58 1853原因: http://we.pcinlife.com/thre ... -
对和服的愤怒很愚蠢
2009-03-30 12:30 847ozzzzzz 写道和服不管怎 ... -
华硕笔记本 M50VN XP 驱动
2009-03-22 15:26 2495转自 : http://www.gscwl.cn/ ... -
解决Intel HD Audio Controller声卡问题
2009-03-06 22:15 2532解决Intel HD Audio Controller ... -
struts2 covention plugin startup log
2009-03-02 15:29 1495[main] DEBUG org.apache.struts2 ... -
struts2.X与spring集成
2008-12-30 15:51 1132转自:struts2.与spring集成 1.将struts ... -
Spring Framework开发参考手册 html格式zip包
2008-09-03 13:33 2517Spring Framework开发参考手册(Spring 2 ...
相关推荐
Spring Security 演讲PPT(演讲嘉宾:张明星) WebSphere技术专家沙龙在广州圆满举办,WSC超级版主Fastzch(张明星)担任本次沙龙的演讲嘉宾,他给广州的WebSphere技术专家带来了以“Spring Security ”为主题的...
Spring Security三份资料,实战Spring Security 3.x.pdf;Spring Security 3.pdf;Spring Security使用手册.pdf
spring security spring security 中文文档
ssceurity-page项目是Spring Security实战(四)的源码; ssecurity-pageClass项目是Spring Security实战(五)的源码; ssecurity-customFilter项目是Spring Security实战(六)的源码; ssecurity-rememberMe项目...
Spring Security in Action
springsecurity是一个功能强大且高度可定制的身份验证和访问控制框架。springsecurity是一个专注于为Java应用程序提供身份验证和授权的框架。与所有Spring项目一样,Spring安全性的真正威力在于它可以很容易地扩展以...
SpringSecurity框架的权限认证流程原理,请求到来时SpringSecurity如果调用层层过滤器来完成认证;
很多独立软件供应商,因为灵活的身份验证模式二选择Spring Security。这样做允许他们快速的集成到他们的终端客户需求的解决方案而不用进行大量工程或者改变客户的环境。如果上面的验证机制不符合你的需求,Spring ...
1.本项目为SpringCloud Gateway的微服务框架,整合了SpringSecurity,微服务间使用Redis来获取登陆的用户信息。 2.由于Gat
三更springsecurity学习笔记
Spring Security 3.pdf Spring Security 3.pdf Spring Security 3.pdf Spring Security 3.pdf
SpringSecurity学习总结源代码
Spring Security:spring家族一员。是一个能够为基于Spring的企业应用系统提供声明式的安全访问控制解决方案的安全框架。它提供了一组可以在Spring应用上下文中配置的Bean,充分利用了Spring IoC,DI(控制反转...
SpringSecurity入门到进阶到高级,是我们老师给我们讲课用的,我们都照着配就没有问题,可以跑通,
spring security2.5 jar 和spring security2.5 整合必须的jar包
Spring Security。 官网 Spring Security API(Spring Security 开发文档).CHM
基于注解的spring-security-login,有兴趣的朋友可以自己下来研究
SpringSecurity课程文档下载 pdf 教学
spring security3 中文版本
Spring Security OAuth2.0学习笔记 什么是认证、授权、会话。 Java Servlet为支持http会话做了哪些事儿。 基于session认证机制的运作流程。 基于token认证机制的运作流程。 理解Spring Security的工作原理,Spring ...