source: raptor-distribution/MSIs/raptor-web/trunk/source/web/webapp/raptor-web/WEB-INF/config/security.xml @ 1747

Revision 1747, 2.1 KB checked in by rhyssmith, 5 years ago (diff)

Adding raptor-web v1.2.1 MSI sources

  • Property svn:executable set to *
Line 
1<?xml version="1.0" encoding="UTF-8"?>
2<!--
3
4    Copyright (C) 2010 Cardiff University, Wales <smartp@cf.ac.uk>
5
6    Licensed under the Apache License, Version 2.0 (the "License");
7    you may not use this file except in compliance with the License.
8    You may obtain a copy of the License at
9
10            http://www.apache.org/licenses/LICENSE-2.0
11
12    Unless required by applicable law or agreed to in writing, software
13    distributed under the License is distributed on an "AS IS" BASIS,
14    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15    See the License for the specific language governing permissions and
16    limitations under the License.
17
18-->
19
20<beans xmlns="http://www.springframework.org/schema/beans"
21        xmlns:s="http://www.springframework.org/schema/security" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
22        xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
23            http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-3.0.xsd">
24
25        <s:http  use-expressions="true">
26                <s:intercept-url pattern="/spring/**" access="isAuthenticated()" />
27                <s:form-login login-page='/login.jsp' authentication-failure-url="/login.jsp?login_error=1"/>
28                <s:logout />
29                <!-- spring will immediatly goto the logout.html before going back to the
30                applications root application path, which is then back to the login -->
31                <s:logout invalidate-session="true" logout-success-url="/timeout.jsp"/>
32
33                <!-- the logout-success-url is the immediate page that is turned to when you logout
34                e.g. for cleanup or message, spring then forwards you back to the initial page, often
35                the login page. The invalid-session-url would however overight that value if left in
36                and you end up with the timeout page whenever you logout -->
37                <s:session-management ><!-- invalid-session-url="/timeout.jsp">-->
38                        <s:concurrency-control max-sessions="5"
39                                />
40                </s:session-management>
41        </s:http>
42
43
44     <import resource="file:///${configurationFiles}/conf/users.xml" />
45
46
47</beans>
Note: See TracBrowser for help on using the repository browser.