<bean id="springSecurityFilterChain" class="org.springframework.security.util.FilterChainProxy">
<sec:filter-chain-map path-type="ant">
- <sec:filter-chain pattern="/ui"
- filters="session,basic,rememberMe,exception,interceptor" />
+ <sec:filter-chain pattern="/private"
+ filters="session,x509,basic,rememberMe,exception,interceptor" />
<sec:filter-chain pattern="/basicauth"
- filters="session,basic,exception,interceptor" />
- <sec:filter-chain pattern="/node" filters="session,exception,interceptor" />
+ filters="session,x509,basic,exception,interceptor" />
+ <sec:filter-chain pattern="/clientauth"
+ filters="session,x509,exception,interceptor" />
+ <!-- <sec:filter-chain pattern="/node" filters="session,x509,exception,interceptor" /> -->
<sec:filter-chain pattern="/public"
filters="session,anonymous,exception,interceptorPublic" />
<sec:filter-chain pattern="/j_spring_security_logout"
</property>
</bean>
+ <bean id="x509"
+ class="org.springframework.security.ui.preauth.x509.X509PreAuthenticatedProcessingFilter">
+ <property name="authenticationManager" ref="authenticationManager" />
+ <property name="principalExtractor">
+ <bean
+ class="org.springframework.security.ui.preauth.x509.SubjectDnX509PrincipalExtractor">
+ <property name="subjectDnRegex" value="CN=(.*?)," />
+ </bean>
+ </property>
+ </bean>
+
<!-- Integrates the authentication information in the http sessions -->
<bean id="session"
class="org.springframework.security.context.HttpSessionContextIntegrationFilter">