- <sec:filter-chain pattern="/images/*" filters="none" />
- <sec:filter-chain pattern="/**"
- filters="securityContextFilter, logoutFilter, requestCacheFilter,
- servletApiFilter, anonFilter, sessionMgmtFilter, exceptionTranslator, filterSecurityInterceptor" />
+ <sec:filter-chain pattern="/webdav/**"
+ filters="session,x509,basic,exception,interceptor" />
+ <!-- For some reason the first level listing workspaces must be public -->
+ <sec:filter-chain pattern="/remoting/*/"
+ filters="anonymous,exception,interceptorPublic" />
+ <sec:filter-chain pattern="/remoting/*/**"
+ filters="session,x509,basic,exception,interceptor" />
+ <sec:filter-chain pattern="/public/**"
+ filters="anonymous,exception,interceptorPublic" />
+ <sec:filter-chain pattern="/pub/**"
+ filters="anonymous,exception,interceptorPublic" />
+ <sec:filter-chain pattern="/j_spring_security_logout"
+ filters="logout,exception" />