Project

General

Profile

« Previous | Next » 

Revision 53704

parthenos people can access the vocabularies themselves

View differences:

applicationContext-security.xml
29 29

  
30 30
	<!-- security exclusion first -->
31 31
	<security:http pattern="/mvc/ui/lightui*/**" security="none"/>
32
	<security:http pattern="/mvc/ui/vocabularies.do/**" security="none"/>
32 33

  
33 34
	<security:http>
34 35
		<security:http-basic />
35 36
		<!--<security:anonymous username="guest" granted-authority="'ROLE_ANONYMOUS'" />-->
36 37
		<!--<security:intercept-url pattern="/monitoring/**" access="hasRole('ANONYMOUS')" />-->
37 38
		<!--<security:intercept-url pattern="/mvc/oai/**" access="hasRole('ANONYMOUS')" />-->
38
		<security:intercept-url pattern="/mvc/inspector/**" access="hasRole('USER')" />
39
		<security:intercept-url pattern="/mvc/ui/**" access="hasRole('USER')" />
39
		<security:intercept-url pattern="/mvc/inspector/**" access="hasRole('ADMIN')" />
40
		<security:intercept-url pattern="/mvc/ui/**" access="hasRole('ADMIN')" />
40 41
		<security:csrf disabled="true"/>
41 42
		<security:logout />
42 43
	</security:http>
......
48 49
			<security:password-encoder hash="md5" />
49 50
			<security:user-service>
50 51
				<security:user name="admin" password="${dnet.admin.password}"
51
				               authorities="ROLE_USER" />
52
				               authorities="ROLE_ADMIN" />
52 53
			</security:user-service>
53 54
		</security:authentication-provider>
54 55
	</security:authentication-manager>

Also available in: Unified diff