Revision 46843
Added by Alessia Bardi about 7 years ago
| modules/dnet-core-components/branches/saxonHE/src/main/resources/eu/dnetlib/enabling/inspector/security/applicationContext-inspector-security.xml | ||
|---|---|---|
| 1 |
<?xml version="1.0" encoding="UTF-8"?> |
|
| 2 |
<beans:beans xmlns:security="http://www.springframework.org/schema/security" |
|
| 3 |
xmlns:beans="http://www.springframework.org/schema/beans" |
|
| 4 |
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" |
|
| 5 |
xsi:schemaLocation="http://www.springframework.org/schema/beans |
|
| 6 |
http://www.springframework.org/schema/beans/spring-beans-3.0.xsd |
|
| 7 |
http://www.springframework.org/schema/security |
|
| 8 |
http://www.springframework.org/schema/security/spring-security.xsd"> |
|
| 9 |
|
|
| 10 |
<!-- <security:debug /> --> |
|
| 11 |
|
|
| 12 |
<!--<security:http create-session="stateless">--> |
|
| 13 |
|
|
| 14 |
<!--<security:http-basic />--> |
|
| 15 |
|
|
| 16 |
<!--<security:intercept-url--> |
|
| 17 |
<!--pattern="/mvc/inspector/**" access="hasRole('ROLE_USER')"/>-->
|
|
| 18 |
<!--<security:intercept-url pattern="/mvc/oai/**"--> |
|
| 19 |
<!--access="hasAnyRole('ROLE_ANONYMOUS', 'ROLE_USER')" />-->
|
|
| 20 |
<!--<security:intercept-url pattern="/mvc/ui/**"--> |
|
| 21 |
<!--access="hasRole('ROLE_USER')"/>-->
|
|
| 22 |
<!--<security:intercept-url pattern="/monitoring/**"--> |
|
| 23 |
<!--access="hasAnyRole('ROLE_ANONYMOUS', 'ROlE_USER')" />-->
|
|
| 24 |
|
|
| 25 |
<!--<security:anonymous username="guest"--> |
|
| 26 |
<!--granted-authority="'ROLE_ANONYMOUS'" />--> |
|
| 27 |
<!--<security:logout />--> |
|
| 28 |
<!--</security:http>--> |
|
| 29 |
|
|
| 30 |
<!--<security:http>--> |
|
| 31 |
<!--<security:intercept-url pattern="/**" access="hasRole('USER')" />-->
|
|
| 32 |
<!--<!–<security:form-login />–>--> |
|
| 33 |
<!--<security:logout />--> |
|
| 34 |
<!--</security:http>--> |
|
| 35 |
|
|
| 36 |
<!--<security:authentication-manager alias="authManager">--> |
|
| 37 |
<!--<security:authentication-provider>--> |
|
| 38 |
<!--<security:password-encoder hash="md5" />--> |
|
| 39 |
<!--<security:user-service>--> |
|
| 40 |
<!--<security:user name="admin" password="${dnet.admin.password}"-->
|
|
| 41 |
<!--authorities="ROLE_USER" />--> |
|
| 42 |
<!--</security:user-service>--> |
|
| 43 |
<!--</security:authentication-provider>--> |
|
| 44 |
<!--</security:authentication-manager>--> |
|
| 45 |
|
|
| 46 |
|
|
| 47 |
|
|
| 48 |
</beans:beans> |
|
| webapps/dnet-parthenos-container/trunk/src/main/webapp/WEB-INF/applicationContext-security.xml | ||
|---|---|---|
| 1 |
<?xml version="1.0" encoding="UTF-8"?> |
|
| 2 |
<beans:beans xmlns:security="http://www.springframework.org/schema/security" |
|
| 3 |
xmlns:beans="http://www.springframework.org/schema/beans" |
|
| 4 |
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" |
|
| 5 |
xsi:schemaLocation="http://www.springframework.org/schema/beans |
|
| 6 |
http://www.springframework.org/schema/beans/spring-beans-3.0.xsd |
|
| 7 |
http://www.springframework.org/schema/security |
|
| 8 |
http://www.springframework.org/schema/security/spring-security.xsd"> |
|
| 9 |
|
|
| 10 |
<!-- <security:debug /> --> |
|
| 11 |
|
|
| 12 |
<!--<security:http create-session="stateless">--> |
|
| 13 |
|
|
| 14 |
<!--<security:http-basic />--> |
|
| 15 |
|
|
| 16 |
<!--<security:intercept-url--> |
|
| 17 |
<!--pattern="/mvc/inspector/**" access="hasRole('ROLE_USER')"/>-->
|
|
| 18 |
<!--<security:intercept-url pattern="/mvc/oai/**"--> |
|
| 19 |
<!--access="hasAnyRole('ROLE_ANONYMOUS', 'ROLE_USER')" />-->
|
|
| 20 |
<!--<security:intercept-url pattern="/mvc/ui/**"--> |
|
| 21 |
<!--access="hasRole('ROLE_USER')"/>-->
|
|
| 22 |
<!--<security:intercept-url pattern="/monitoring/**"--> |
|
| 23 |
<!--access="hasAnyRole('ROLE_ANONYMOUS', 'ROlE_USER')" />-->
|
|
| 24 |
|
|
| 25 |
<!--<security:anonymous username="guest"--> |
|
| 26 |
<!--granted-authority="'ROLE_ANONYMOUS'" />--> |
|
| 27 |
<!--<security:logout />--> |
|
| 28 |
<!--</security:http>--> |
|
| 29 |
|
|
| 30 |
<security:http> |
|
| 31 |
<security:intercept-url pattern="/**" access="hasRole('USER')" />
|
|
| 32 |
<security:csrf disabled="true"/> |
|
| 33 |
<security:logout /> |
|
| 34 |
</security:http> |
|
| 35 |
|
|
| 36 |
<security:authentication-manager alias="authManager"> |
|
| 37 |
<security:authentication-provider> |
|
| 38 |
<security:password-encoder hash="md5" /> |
|
| 39 |
<security:user-service> |
|
| 40 |
<security:user name="admin" password="${dnet.admin.password}"
|
|
| 41 |
authorities="ROLE_USER" /> |
|
| 42 |
</security:user-service> |
|
| 43 |
</security:authentication-provider> |
|
| 44 |
</security:authentication-manager> |
|
| 45 |
|
|
| 46 |
|
|
| 47 |
|
|
| 48 |
</beans:beans> |
|
Also available in: Unified diff
Better move the security config in the container instead