Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?xml version="1.0" encoding="UTF-8"?>
- <beans xmlns="http://www.springframework.org/schema/beans"
- xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
- xmlns:security="http://www.springframework.org/schema/security"
- xsi:schemaLocation="http://www.springframework.org/schema/beans
- http://www.springframework.org/schema/beans/spring-beans-3.1.xsd
- http://www.springframework.org/schema/security
- http://www.springframework.org/schema/security/spring-security-3.1.xsd">
- <!-- This is where we configure Spring-Security -->
- <security:http auto-config="true" use-expressions="true" access-denied-page="/login-fail" >
- <security:intercept-url pattern="/login" access="permitAll"/>
- <!-- <security:intercept-url pattern="/krams/main/admin" access="hasRole('ROLE_ADMIN')"/>-->
- <security:intercept-url pattern="/" access="hasRole('ROLE_USER')"/>
- <security:form-login
- login-page="/login"
- authentication-failure-url="/login-fail?error=true"
- default-target-url="/index"/>
- <security:logout
- invalidate-session="true"
- logout-success-url="/logout"
- logout-url="/logout"/>
- </security:http>
- <!-- Declare an authentication-manager to use a custom userDetailsService -->
- <security:authentication-manager>
- <security:authentication-provider user-service-ref="customUserDetailsService">
- <!-- <security:password-encoder ref="passwordEncoder"/>-->
- </security:authentication-provider>
- </security:authentication-manager>
- <!-- Use a Md5 encoder since the user's passwords are stored as Md5 in the database
- <bean class="org.springframework.security.authentication.encoding.Md5PasswordEncoder" id="passwordEncoder"/>
- -->
- <!-- A custom service where Spring will retrieve users and their corresponding access levels -->
- <bean id="customUserDetailsService" class="web.service.common.CustomUserDetailsService"/>
- </beans>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
