http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.5.xsd
http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-2.0.4.xsd">
- <bean id="springSecurityFilterChain" class="org.springframework.security.util.FilterChainProxy">
+ <bean id="filterChain.davex" parent="filterChain.template">
<sec:filter-chain-map path-type="ant">
- <sec:filter-chain pattern="/files/**"
- filters="session,x509,basic,exception,interceptor" />
- <sec:filter-chain pattern="/jcr/*/*/**"
+ <sec:filter-chain pattern="/*/*/*/**"
filters="session,x509,basic,exception,interceptor" />
<!-- For some reason the first level listing workspaces must be public -->
- <sec:filter-chain pattern="/jcr/*/"
- filters="anonymous,exception,interceptorPublic" />
- <sec:filter-chain pattern="/public/**"
+ <sec:filter-chain pattern="/*/*/"
filters="anonymous,exception,interceptorPublic" />
- <sec:filter-chain pattern="/pub/**"
+ </sec:filter-chain-map>
+ </bean>
+
+ <bean id="filterChain.private" parent="filterChain.template">
+ <sec:filter-chain-map path-type="ant">
+ <sec:filter-chain pattern="/**"
+ filters="session,x509,basic,exception,interceptor" />
+ </sec:filter-chain-map>
+ </bean>
+
+ <bean id="filterChain.public" parent="filterChain.template">
+ <sec:filter-chain-map path-type="ant">
+ <sec:filter-chain pattern="/**"
filters="anonymous,exception,interceptorPublic" />
- <sec:filter-chain pattern="/j_spring_security_logout"
- filters="logout,exception" />
</sec:filter-chain-map>
+ </bean>
+
+ <bean id="filterChain.template" abstract="true"
+ class="org.springframework.security.util.FilterChainProxy">
<property name="matcher">
<bean class="org.springframework.security.util.AntUrlPathMatcher">
<!-- Do not convert to lower case -->
<!-- Processes logouts, removing both session informations and the remember-me
cookie from the browser -->
- <bean id="logout" class="org.springframework.security.ui.logout.LogoutFilter">
- <constructor-arg value="/webdav/node/main" />
- <!-- URL redirected to after logout -->
- <constructor-arg>
- <list>
- <!-- <ref bean="rememberMeServices" /> -->
- <bean
- class="org.springframework.security.ui.logout.SecurityContextLogoutHandler" />
- </list>
- </constructor-arg>
- </bean>
-
- <!-- Use the remember me cookie to authenticate <bean id="rememberMe" class="org.springframework.security.ui.rememberme.RememberMeProcessingFilter">
- <property name="authenticationManager" ref="authenticationManager" /> <property
- name="rememberMeServices" ref="rememberMeServices" /> </bean> <bean id="rememberMeServices"
- class="org.springframework.security.ui.rememberme.TokenBasedRememberMeServices">
- <property name="userDetailsService" ref="userDetailsService" /> <property
- name="key" value="${argeo.security.systemKey}" /> <property name="tokenValiditySeconds"
- value="${argeo.jcr.webapp.rememberMeValidity}" /> <property name="alwaysRemember"
- value="true" /> </bean> -->
+ <!-- <bean id="logout" class="org.springframework.security.ui.logout.LogoutFilter"> -->
+ <!-- <constructor-arg value="/webdav/node/main" /> -->
+ <!-- <constructor-arg> -->
+ <!-- <list> -->
+ <!-- <bean -->
+ <!-- class="org.springframework.security.ui.logout.SecurityContextLogoutHandler"
+ /> -->
+ <!-- </list> -->
+ <!-- </constructor-arg> -->
+ <!-- </bean> -->
<!-- Basic authentication -->
<bean id="basic"
<property name="authenticationEntryPoint">
<ref local="basicProcessingFilterEntryPoint" />
</property>
- <!-- <property name="rememberMeServices" ref="rememberMeServices" /> -->
</bean>
<!-- Activate basic auth when needed -->
</property>
<property name="accessDeniedHandler">
<bean class="org.springframework.security.ui.AccessDeniedHandlerImpl">
- <property name="errorPage" value="/accessDenied.jsp" />
+ <!-- <property name="errorPage" value="/accessDenied.jsp" /> -->
</bean>
</property>
</bean>