Revision 46843
Added by Alessia Bardi about 7 years ago
modules/dnet-core-components/branches/saxonHE/src/main/resources/eu/dnetlib/enabling/inspector/security/applicationContext-inspector-security.xml | ||
---|---|---|
1 |
<?xml version="1.0" encoding="UTF-8"?> |
|
2 |
<beans:beans xmlns:security="http://www.springframework.org/schema/security" |
|
3 |
xmlns:beans="http://www.springframework.org/schema/beans" |
|
4 |
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" |
|
5 |
xsi:schemaLocation="http://www.springframework.org/schema/beans |
|
6 |
http://www.springframework.org/schema/beans/spring-beans-3.0.xsd |
|
7 |
http://www.springframework.org/schema/security |
|
8 |
http://www.springframework.org/schema/security/spring-security.xsd"> |
|
9 |
|
|
10 |
<!-- <security:debug /> --> |
|
11 |
|
|
12 |
<!--<security:http create-session="stateless">--> |
|
13 |
|
|
14 |
<!--<security:http-basic />--> |
|
15 |
|
|
16 |
<!--<security:intercept-url--> |
|
17 |
<!--pattern="/mvc/inspector/**" access="hasRole('ROLE_USER')"/>--> |
|
18 |
<!--<security:intercept-url pattern="/mvc/oai/**"--> |
|
19 |
<!--access="hasAnyRole('ROLE_ANONYMOUS', 'ROLE_USER')" />--> |
|
20 |
<!--<security:intercept-url pattern="/mvc/ui/**"--> |
|
21 |
<!--access="hasRole('ROLE_USER')"/>--> |
|
22 |
<!--<security:intercept-url pattern="/monitoring/**"--> |
|
23 |
<!--access="hasAnyRole('ROLE_ANONYMOUS', 'ROlE_USER')" />--> |
|
24 |
|
|
25 |
<!--<security:anonymous username="guest"--> |
|
26 |
<!--granted-authority="'ROLE_ANONYMOUS'" />--> |
|
27 |
<!--<security:logout />--> |
|
28 |
<!--</security:http>--> |
|
29 |
|
|
30 |
<!--<security:http>--> |
|
31 |
<!--<security:intercept-url pattern="/**" access="hasRole('USER')" />--> |
|
32 |
<!--<!–<security:form-login />–>--> |
|
33 |
<!--<security:logout />--> |
|
34 |
<!--</security:http>--> |
|
35 |
|
|
36 |
<!--<security:authentication-manager alias="authManager">--> |
|
37 |
<!--<security:authentication-provider>--> |
|
38 |
<!--<security:password-encoder hash="md5" />--> |
|
39 |
<!--<security:user-service>--> |
|
40 |
<!--<security:user name="admin" password="${dnet.admin.password}"--> |
|
41 |
<!--authorities="ROLE_USER" />--> |
|
42 |
<!--</security:user-service>--> |
|
43 |
<!--</security:authentication-provider>--> |
|
44 |
<!--</security:authentication-manager>--> |
|
45 |
|
|
46 |
|
|
47 |
|
|
48 |
</beans:beans> |
webapps/dnet-parthenos-container/trunk/src/main/webapp/WEB-INF/applicationContext-security.xml | ||
---|---|---|
1 |
<?xml version="1.0" encoding="UTF-8"?> |
|
2 |
<beans:beans xmlns:security="http://www.springframework.org/schema/security" |
|
3 |
xmlns:beans="http://www.springframework.org/schema/beans" |
|
4 |
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" |
|
5 |
xsi:schemaLocation="http://www.springframework.org/schema/beans |
|
6 |
http://www.springframework.org/schema/beans/spring-beans-3.0.xsd |
|
7 |
http://www.springframework.org/schema/security |
|
8 |
http://www.springframework.org/schema/security/spring-security.xsd"> |
|
9 |
|
|
10 |
<!-- <security:debug /> --> |
|
11 |
|
|
12 |
<!--<security:http create-session="stateless">--> |
|
13 |
|
|
14 |
<!--<security:http-basic />--> |
|
15 |
|
|
16 |
<!--<security:intercept-url--> |
|
17 |
<!--pattern="/mvc/inspector/**" access="hasRole('ROLE_USER')"/>--> |
|
18 |
<!--<security:intercept-url pattern="/mvc/oai/**"--> |
|
19 |
<!--access="hasAnyRole('ROLE_ANONYMOUS', 'ROLE_USER')" />--> |
|
20 |
<!--<security:intercept-url pattern="/mvc/ui/**"--> |
|
21 |
<!--access="hasRole('ROLE_USER')"/>--> |
|
22 |
<!--<security:intercept-url pattern="/monitoring/**"--> |
|
23 |
<!--access="hasAnyRole('ROLE_ANONYMOUS', 'ROlE_USER')" />--> |
|
24 |
|
|
25 |
<!--<security:anonymous username="guest"--> |
|
26 |
<!--granted-authority="'ROLE_ANONYMOUS'" />--> |
|
27 |
<!--<security:logout />--> |
|
28 |
<!--</security:http>--> |
|
29 |
|
|
30 |
<security:http> |
|
31 |
<security:intercept-url pattern="/**" access="hasRole('USER')" /> |
|
32 |
<security:csrf disabled="true"/> |
|
33 |
<security:logout /> |
|
34 |
</security:http> |
|
35 |
|
|
36 |
<security:authentication-manager alias="authManager"> |
|
37 |
<security:authentication-provider> |
|
38 |
<security:password-encoder hash="md5" /> |
|
39 |
<security:user-service> |
|
40 |
<security:user name="admin" password="${dnet.admin.password}" |
|
41 |
authorities="ROLE_USER" /> |
|
42 |
</security:user-service> |
|
43 |
</security:authentication-provider> |
|
44 |
</security:authentication-manager> |
|
45 |
|
|
46 |
|
|
47 |
|
|
48 |
</beans:beans> |
Also available in: Unified diff
Better move the security config in the container instead