zoukankan      html  css  js  c++  java
  • spring-security配置文件

    <?xml version="1.0" encoding="UTF-8"?>
    <beans xmlns="http://www.springframework.org/schema/beans"
           xmlns:security="http://www.springframework.org/schema/security"
           xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
           xsi:schemaLocation="http://www.springframework.org/schema/beans
    http://www.springframework.org/schema/beans/spring-beans.xsd
    http://www.springframework.org/schema/security
    http://www.springframework.org/schema/security/spring-security.xsd">
        <!-- 把登陆页面不拦截 -->
        <security:http pattern="/login.jsp" security="none"/>
        <security:http pattern="/failer.jsp" security="none"/>
        <security:http pattern="/css/*" security="none"/>
        <security:http pattern="/img/*" security="none"/>
        <security:http pattern="/plugins/**" security="none"/>
        <!--
        配置拦截的规则
        auto-config="使用自带的页面"
        use-expressions="是否使用spel表达式",如果使用表达式:hasRole('ROLE_USER')
        -->
        <security:http auto-config="true" use-expressions="false">
            <!-- 配置拦截的请求地址,任何请求地址都必须有ROLE_USER的权限 -->
            <security:intercept-url pattern="/**" access="ROLE_USER"/>
            <!-- 配置具体的页面跳转 -->
            <security:form-login
                    login-page="/login.jsp"
                    login-processing-url="/login"
                    default-target-url="/index.jsp"
                    authentication-failure-url="/failer.jsp"
            />
            <!-- 关闭跨站请求伪造(Cross-site request forgery) -->
            <security:csrf disabled="true"/>
            <!-- 退出 -->
            <security:logout invalidate-session="true" logout-url="/logout" logout-success-url="/login.jsp"/>
        </security:http>
        <!-- 在内存中临时提供用户名和密码的数据 -->
        <security:authentication-manager>
            <security:authentication-provider>
                <security:user-service>
                    <security:user name="admin" password="{noop}admin" authorities="ROLE_USER"/>
                </security:user-service>
            </security:authentication-provider>
        </security:authentication-manager>
    </beans>
    
  • 相关阅读:
    CSS之表格边框合并、兄弟标签外边距合并、父子标签的外边距合并
    html之css选择器学习
    html5常见新增标签
    mysql之数据备份与恢复
    mysql之用户权限管理
    mysql之用户管理
    mysql之全球化和本地化:字符集、校对集、中文编码问题
    Sublime Text 3 安装与配置
    CSS 自适应
    php 验证码代码
  • 原文地址:https://www.cnblogs.com/zhz-8919/p/11150791.html
Copyright © 2011-2022 走看看