81,095
社区成员
发帖
与我相关
我的任务
分享
<?xml version="1.0" encoding="UTF-8"?>
<beans:beans xmlns="http://www.springframework.org/schema/security"
xmlns:beans="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.0.xsd
http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-2.0.4.xsd">
<global-method-security secured-annotations="enabled">
</global-method-security>
<http auto-config="true">
<intercept-url pattern="/login.jsp*" filters="none"/>
<intercept-url pattern="/common/pages/**" access="IS_AUTHENTICATED_REMEMBERED" />
<intercept-url pattern="/common/**" filters="none" />
<intercept-url pattern="/secure/extreme/**" access="ROLE_SUPERVISOR"/>
<intercept-url pattern="/secure/**" access="IS_AUTHENTICATED_REMEMBERED" />
<!-- App module AC Config Begin-->
<intercept-url pattern="/TestDemos/**" filters="none"/>
<intercept-url pattern="/UsersAdmin/**" access="ROLE_SUPERVISOR"/>
<intercept-url pattern="/UserAdmin/**" access="IS_AUTHENTICATED_REMEMBERED"/>
<intercept-url pattern="/customer/add/**" access="ROLE_CT_ADDER" />
<intercept-url pattern="/customer/chg/**" access="ROLE_CT_CHGER" />
<intercept-url pattern="/customer/del/**" access="ROLE_CT_DELER" />
<intercept-url pattern="/customer/search/**" access="ROLE_CT_SEARCHER" />
<intercept-url pattern="/config/make/**" access="ROLE_CM_DEClARER"/>
<intercept-url pattern="/config/sl/**" access="ROLE_CM_EXACCEPTER"/>
<intercept-url pattern="/config/sli/**" access="ROLE_CM_INACCEPTER"/>
<intercept-url pattern="/sheetop/pre_*.jsp*" access="ROLE_CM_RESASSIGNER"/>
<intercept-url pattern="/sheetop/fenfa_*.jsp*" access="ROLE_CM_WfDESPACHER"/>
<intercept-url pattern="/sheetop/nc_*.jsp*" access="ROLE_CM_WFNETWORKER"/>
<intercept-url pattern="/sheetop/Ap_*.jsp*" access="ROLE_CM_WFAPPER"/>
<intercept-url pattern="/liuliang/**" access="ROLE_CM_DISCHARGER"/>
<intercept-url pattern="/Bill/search.jsp*" access="ROLE_CM_BILLQUERYER"/>
<intercept-url pattern="/Bill/admin/**" access="ROLE_CM_BILLADMINER"/>
<intercept-url pattern="/tongji/**" access="ROLE_CM_STATER"/>
<intercept-url pattern="/warning/**" access="ROLE_CM_WARNER"/>
<!-- App module AC Config End-->
<intercept-url pattern="/**" access="IS_AUTHENTICATED_REMEMBERED" />
<form-login login-page='/login.jsp' authentication-failure-url="/login.jsp?login_error=1" default-target-url='/index.jsp?action=login' always-use-default-target="true" />
<concurrent-session-control max-sessions="1" exception-if-maximum-exceeded="true"/>
</http>
<authentication-provider>
<jdbc-user-service data-source-ref="dataSource"
group-authorities-by-username-query="select U.username,G.group_name,GA.authority as 'authority' from users U join group_members GM on U.username=GM.username join groups G on GM.group_id=G.id join group_authorities GA on G.id=GA.group_id where U.username=?"
/>
<password-encoder hash="sha">
<salt-source user-property="username" />
</password-encoder>
</authentication-provider>
</beans:beans>