WebSVN - Integrator Subversion - Diff - Rev 224 and 242 - /projeto-novo/espacocase-novo/src/main/webapp/WEB-INF/spring-security.xml

 <?xml version="1.0" encoding="UTF-8"?>
 <beans:beans xmlns="http://www.springframework.org/schema/security"
     xmlns:beans="http://www.springframework.org/schema/beans"
     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
     xsi:schemaLocation="http://www.springframework.org/schema/beans
     http://www.springframework.org/schema/beans/spring-beans.xsd
     http://www.springframework.org/schema/security
     http://www.springframework.org/schema/security/spring-security.xsd">
-        <!--
-    <http auto-config="true" use-expressions="true">
+    <http auto-config="true" use-expressions="true">
-        <form-login login-page="/sistema/login.xhtml"
+        <form-login login-page="/sistema/login.jsf"
                     login-processing-url="/loginAcao"
-                    default-target-url="/sistema/home.xhtml"
-                    authentication-failure-url="/sistema/login.xhtml?error=true" />
+                    default-target-url="/index.jsp"
+                    authentication-failure-url="/sistema/login.jsf?login_error=1" />
-        <intercept-url pattern="/sistema/**" access="isAuthenticated()"/>
-         -->
-                <!-- <http pattern="/sistema/login.jsf" security="none" />
-                <http pattern="/sistema/login.xhtml" security="none"/>
-                <intercept-url pattern="/sistema/mega.xhtml" filters="none"/>
-        <intercept-url pattern="/sistema/login" access="hasRole('ROLE_ADMIN')" />
-                <logout logout-url="/sistema_security_logout" logout-success-url="/sistema/index.xhtml"/>
+        <intercept-url pattern="/sistema/login.jsf" access="permitAll" />
+        <intercept-url pattern="/sistema/login.xhtml" access="permitAll" />
+        <intercept-url pattern="/sistema/**" access="authenticated" />
+        <csrf disabled="true" />
+                <logout logout-url="/sistema_security_logout" logout-success-url="/sistema/pagina_inicial.xhtml"/>
-    </http>
+    </http>
-        -->
     <beans:bean id="sistemaAuthenticationProvider" class="br.com.ec.controller.seguranca.SistemaAuthenticationProvider" />
-    <authentication-manager alias="authManager">
-                <authentication-provider ref="sistemaAuthenticationProvider" />
+        <authentication-manager alias="authManager">
+                <authentication-provider ref="sistemaAuthenticationProvider"/>
         </authentication-manager>
-    <!--
-    <authentication-manager>
-      <authentication-provider>
-        <user-service>
-        <user name="admin" password="1234" authorities="hasRole(ROLE_ADMIN)" />
-        </user-service>
-      </authentication-provider>
-    </authentication-manager>
-       -->
 </beans:beans>
-<!-- <?xml version="1.0" encoding="UTF-8"?>
-<b:beans xmlns:sec="http://www.springframework.org/schema/security"
-                 xmlns:b="http://www.springframework.org/schema/beans"
-                 xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-                 xsi:schemaLocation="http://www.springframework.org/schema/beans https://www.springframework.org/schema/beans/spring-beans.xsd
-                                                http://www.springframework.org/schema/security https://www.springframework.org/schema/security/spring-security.xsd">
-        <sec:http auto-config="true" use-expressions="true">
-        <sec:form-login login-page="/sistema/login.jsf"
-                        login-processing-url="/loginProcess"
-                        default-target-url="/index.jsp"
-                        authentication-failure-url="/sistema/login.jsf?login_error=1" />
-                <sec:intercept-url pattern="/sistema/**" access="isAuthenticated()"/>
-                <sec:intercept-url pattern="/sistema/login.jsf" filters="none"/>
-                <sec:intercept-url pattern="/sistema/login.xhtml" filters="none"/>
-                <sec:intercept-url pattern="/sistema/mega.xhtml" filters="none"/>
-                <sec:logout logout-url="/sistema_security_logout" logout-success-url="/sistema/index.xhtml"/>
-        </sec:http>
-        <b:bean id="sistemaAuthenticationProvider" class="br.com.ec.controller.seguranca.SistemaAuthenticationProvider" />
-        <sec:authentication-manager alias="authManager">
-                <sec:authentication-provider ref="sistemaAuthenticationProvider"/>
-        </sec:authentication-manager>
-</b:beans> -->

Subversion Repositories Integrator Subversion

(root)/projeto-novo/espacocase-novo/src/main/webapp/WEB-INF/spring-security.xml - Rev 224 → 242