root
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Actions 6 Packages Projects Releases Wiki Activity

Some updates to contacts sample to match description in docs, remove unnecessary cas code etc.

This commit is contained in:
Luke Taylor 2008-04-12 18:08:35 +00:00
parent c7f182309f
commit 42cd91e259
3 changed files with 7 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
samples/contacts/src/main/webapp/WEB-INF/applicationContext-acegi-security.xml → samples/contacts/src/main/webapp/WEB-INF/applicationContext-security.xml
View File

@ -16,14 +16,15 @@
<http auto-config="true" realm="Contacts Realm"> <http auto-config="true" realm="Contacts Realm">
<intercept-url pattern="/index.jsp" access="ROLE_ANONYMOUS,ROLE_USER"/> <intercept-url pattern="/" access="IS_AUTHENTICATED_ANONYMOUSLY"/>
<intercept-url pattern="/hello.htm" access="ROLE_ANONYMOUS,ROLE_USER"/> <intercept-url pattern="/index.jsp" access="IS_AUTHENTICATED_ANONYMOUSLY"/>
<intercept-url pattern="/hello.htm" access="IS_AUTHENTICATED_ANONYMOUSLY"/>
<intercept-url pattern="/login.jsp*" access="IS_AUTHENTICATED_ANONYMOUSLY"/>
<intercept-url pattern="/switchuser.jsp" access="ROLE_SUPERVISOR"/> <intercept-url pattern="/switchuser.jsp" access="ROLE_SUPERVISOR"/>
<intercept-url pattern="/j_spring_security_switch_user" access="ROLE_SUPERVISOR"/> <intercept-url pattern="/j_spring_security_switch_user" access="ROLE_SUPERVISOR"/>
<intercept-url pattern="/acegilogin.jsp*" access="ROLE_ANONYMOUS,ROLE_USER"/>
<intercept-url pattern="/**" access="ROLE_USER"/> <intercept-url pattern="/**" access="ROLE_USER"/>
<form-login login-page="/acegilogin.jsp" authentication-failure-url="/acegilogin.jsp?login_error=1"/> <form-login login-page="/login.jsp" authentication-failure-url="/acegilogin.jsp?login_error=1"/>
<logout logout-success-url="/index.jsp"/> <logout logout-success-url="/index.jsp"/>
</http> </http>
@ -39,7 +40,7 @@
based on the role granted the ability to 'switch' to another user --> based on the role granted the ability to 'switch' to another user -->
<!-- In this example 'rod' has ROLE_SUPERVISOR that can switch to regular ROLE_USER(s) --> <!-- In this example 'rod' has ROLE_SUPERVISOR that can switch to regular ROLE_USER(s) -->
<b:bean id="switchUserProcessingFilter" class="org.springframework.security.ui.switchuser.SwitchUserProcessingFilter" autowire="byType"> <b:bean id="switchUserProcessingFilter" class="org.springframework.security.ui.switchuser.SwitchUserProcessingFilter" autowire="byType">
<custom-filter after="SWITCH_USER_FILTER"/> <custom-filter position="SWITCH_USER_FILTER"/>
<b:property name="targetUrl" value="/secure/index.htm"/> <b:property name="targetUrl" value="/secure/index.htm"/>
</b:bean> </b:bean>

15
samples/contacts/src/main/webapp/WEB-INF/web.xml
View File

@ -19,25 +19,12 @@
<context-param> <context-param>
<param-name>contextConfigLocation</param-name> <param-name>contextConfigLocation</param-name>
<param-value> <param-value>
/WEB-INF/applicationContext-acegi-security.xml /WEB-INF/applicationContext-security.xml
classpath:applicationContext-common-business.xml classpath:applicationContext-common-business.xml
classpath:applicationContext-common-authorization.xml classpath:applicationContext-common-authorization.xml
</param-value> </param-value>
</context-param> </context-param>
<!--
Required for CAS ProxyTicketReceptor servlet. This is the
URL to CAS' "proxy" actuator, where a PGT and TargetService can
be presented to obtain a new proxy ticket. THIS CAN BE
REMOVED IF THE APPLICATION DOESN'T NEED TO ACT AS A PROXY
-->
<context-param>
<param-name>edu.yale.its.tp.cas.proxyUrl</param-name>
<param-value>http://localhost:8433/cas/proxy</param-value>
</context-param>
<!-- Nothing below here needs to be modified --> <!-- Nothing below here needs to be modified -->
<context-param> <context-param>

0
samples/contacts/src/main/webapp/acegilogin.jsp → samples/contacts/src/main/webapp/login.jsp
View File