转载:http://www.mossle.com/docs/auth/html/pt02-web.html
部分 II. 保护web篇
2012-12-5 23:42:36 org.springframework.security.config.http.HttpSecurityBeanDefinitionParser checkFilterChainOrder 信息: Checking sorted filter chain: [ Root bean: class [org.springframework.security.web.context.SecurityContextPersistenceFilter]; ... order = 200, Root bean: class [org.springframework.security.web.authentication.logout.LogoutFilter]; ... order = 400, <org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter#0>, order = 800, Root bean: class [org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter]; ... order = 1000, Root bean: class [org.springframework.security.web.authentication.www.BasicAuthenticationFilter]; ... order = 1200, Root bean: class [org.springframework.security.web.savedrequest.RequestCacheAwareFilter]; ... order = 1300, Root bean: class [org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter]; ... order = 1400, Root bean: class [org.springframework.security.web.authentication.AnonymousAuthenticationFilter]; ... order = 1700, Root bean: class [org.springframework.security.web.session.SessionManagementFilter]; ... order = 1800, Root bean: class [org.springframework.security.web.access.ExceptionTranslationFilter]; ... order = 1900, <org.springframework.security.web.access.intercept.FilterSecurityInterceptor#0>, order = 2000 ]
Spring Security一启动就会包含这样一批负责各种安全管理的过滤器,这部分的任务就是详细讲解每个过滤器的功能和用法,并讨论与之相关的各种控制权限的方法。