Revision 46838
Added by Alessia Bardi about 7 years ago
applicationContext-inspector-security.xml | ||
---|---|---|
9 | 9 |
|
10 | 10 |
<!-- <security:debug /> --> |
11 | 11 |
|
12 |
<security:http create-session="stateless">
|
|
12 |
<!--<security:http create-session="stateless">-->
|
|
13 | 13 |
|
14 |
<security:http-basic />
|
|
14 |
<!--<security:http-basic />-->
|
|
15 | 15 |
|
16 |
<security:intercept-url |
|
17 |
pattern="/mvc/inspector/index.do/**/Security**/**/show" access="hasRole('ROLE_USER')"/> |
|
18 |
<security:intercept-url pattern="/mvc/inspector/index.do/**/User**/**/show" |
|
19 |
access="hasRole('ROLE_USER')"/> |
|
20 |
<security:intercept-url |
|
21 |
pattern="/mvc/inspector/index.do/**/Security**/**/list" access="hasRole('ROLE_USER')"/> |
|
22 |
<security:intercept-url pattern="/mvc/inspector/index.do/**/User**/**/list" |
|
23 |
access="hasRole('ROLE_USER')"/> |
|
24 |
<security:intercept-url pattern="/mvc/inspector/index.do/**/show" |
|
25 |
access="hasRole('ROLE_USER')"/> |
|
26 |
<security:intercept-url pattern="/mvc/inspector/index.do/**/list" |
|
27 |
access="hasRole('ROLE_USER')"/> |
|
28 |
<security:intercept-url pattern="/mvc/inspector/msroProcessImage.do/**" |
|
29 |
access="hasRole('ROLE_USER')"/> |
|
30 |
<security:intercept-url pattern="/mvc/inspector/backup.do/**" |
|
31 |
access="hasRole('ROLE_USER')"/> |
|
32 |
<security:intercept-url pattern="/mvc/inspector/static.do/**" |
|
33 |
access="hasRole('ROLE_USER')"/> |
|
34 |
<security:intercept-url pattern="/mvc/oai/**" |
|
35 |
access="hasAnyRole('ROLE_ANONYMOUS', 'ROLE_USER')" /> |
|
36 |
<security:intercept-url pattern="/mvc/inspector/**" |
|
37 |
access="hasRole('ROLE_USER')"/> |
|
38 |
<security:intercept-url pattern="/mvc/ui/**" |
|
39 |
access="hasRole('ROLE_USER')"/> |
|
40 |
<security:intercept-url pattern="/monitoring/**" |
|
41 |
access="hasAnyRole('ROLE_ANONYMOUS', 'ROlE_USER')" /> |
|
16 |
<!--<security:intercept-url--> |
|
17 |
<!--pattern="/mvc/inspector/**" access="hasRole('ROLE_USER')"/>--> |
|
18 |
<!--<security:intercept-url pattern="/mvc/oai/**"--> |
|
19 |
<!--access="hasAnyRole('ROLE_ANONYMOUS', 'ROLE_USER')" />--> |
|
20 |
<!--<security:intercept-url pattern="/mvc/ui/**"--> |
|
21 |
<!--access="hasRole('ROLE_USER')"/>--> |
|
22 |
<!--<security:intercept-url pattern="/monitoring/**"--> |
|
23 |
<!--access="hasAnyRole('ROLE_ANONYMOUS', 'ROlE_USER')" />--> |
|
42 | 24 |
|
43 |
<security:anonymous username="guest"
|
|
44 |
granted-authority="'ROLE_ANONYMOUS'" />
|
|
45 |
<security:logout />
|
|
46 |
</security:http>
|
|
25 |
<!--<security:anonymous username="guest"-->
|
|
26 |
<!--granted-authority="'ROLE_ANONYMOUS'" />-->
|
|
27 |
<!--<security:logout />-->
|
|
28 |
<!--</security:http>-->
|
|
47 | 29 |
|
48 | 30 |
<!--<security:http>--> |
49 | 31 |
<!--<security:intercept-url pattern="/**" access="hasRole('USER')" />--> |
50 |
<!--<security:form-login />-->
|
|
32 |
<!--<!–<security:form-login />–>-->
|
|
51 | 33 |
<!--<security:logout />--> |
52 | 34 |
<!--</security:http>--> |
53 | 35 |
|
54 |
<security:authentication-manager alias="authManager">
|
|
55 |
<security:authentication-provider>
|
|
56 |
<security:password-encoder hash="md5" />
|
|
57 |
<security:user-service>
|
|
58 |
<security:user name="admin" password="${dnet.admin.password}"
|
|
59 |
authorities="ROLE_USER" />
|
|
60 |
</security:user-service>
|
|
61 |
</security:authentication-provider>
|
|
62 |
</security:authentication-manager>
|
|
36 |
<!--<security:authentication-manager alias="authManager">-->
|
|
37 |
<!--<security:authentication-provider>-->
|
|
38 |
<!--<security:password-encoder hash="md5" />-->
|
|
39 |
<!--<security:user-service>-->
|
|
40 |
<!--<security:user name="admin" password="${dnet.admin.password}"-->
|
|
41 |
<!--authorities="ROLE_USER" />-->
|
|
42 |
<!--</security:user-service>-->
|
|
43 |
<!--</security:authentication-provider>-->
|
|
44 |
<!--</security:authentication-manager>-->
|
|
63 | 45 |
|
64 | 46 |
|
65 | 47 |
|
Also available in: Unified diff
disabling security again because there are problems on the authentication when calling the listApis.do