Home > Others

Configuration information of spring security-acegi

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

 

Authentication processing filter configuration of authenticationprocessingfilter

  1. <Bean id = "authenticationprocessingfilter" class = "org. acegisecurity. UI. webapp. authenticationprocessingfilter">
  2. <Property name = "filterprocessesurl" value = "/j_security_check"/>
  3. <Property name = "authenticationfailureurl" value = "/index. jsp? Login_error = 1 "/>
  4. <Property name = "defaulttargeturl" value = "/Main. Do"/>
  5. <Property name = "authenticationmanager" ref = "authenticationmanager"/>
  6. <Property name = "remembermeservices" ref = ""/> <! -Optional -->
  7. </Bean>
  8. Note:
  9. 1) processes form-based authentication requests.
  10. 2) When a request is received as defined in filterprocessesurl, it first authenticates the user identity through authenticationmanager. If the verification succeeds, the system redirects to the successful login page defined by defaulttargeturl. If the verification fails, the user identity is obtained from remembermeservices. If retrieval fails, the logon Failure page defined by auhenticationfailureurl is redirected.
  11. 3) filterprocessesurl: The default value is/j_acegi_security_check. This value must be consistent with the action value of the form on the logon page.
  12. The name of the input control that inputs the user name in form must be j_username; the name of the input control that inputs the password must be j_password.
  13. 4) remembermeservices stores previous user logon information in the form of cookies. If the authentication object does not exist, remembermeprocessingfilter calls the remembermeservices autologin () method to obtain user logon information in cookies. If so, the authentication object is returned. If the rememberme function is set during each user login, after the user's identity is verified successfully, the loginsuccess () method is called to record the user information in cookies; otherwise, loginfail () is called () method to clear the cookie.

 

Authentication Manager authenticationmanager Configuration

 

  1. <Bean id = "authenticationmanager" class = "org. acegisecurity. providers. providermanager">
  2. <Property name = "providers">
  3. <List>
  4. <Ref local = "daoauthenticationprovider"/>
  5. <Ref local = "anonymousauthenticationprovider"/>
  6. </List>
  7. </Property>
  8. </Bean>
  9. Note:
  10. 1) The Authentication Manager is used to manage the authentication provider. It delegates the authentication function to multiple providers and traverses providers to ensure identity authentication from different sources. If a provider can successfully confirm the identity of the current user, authenticate () method returns a complete authentication object containing user authorization information. Otherwise, an authenticationexception is thrown.
  11. 2) Whether successful or not, the Authentication Manager will publish an applicationevent event object.

Authentication provider Configuration

 

  1. <Bean id = "daoauthenticationprovider" class = "org. acegisecurity. providers. Dao. daoauthenticationprovider">
  2. <Property name = "userdetailsservice" ref = "userdao"/>
  3. <Property name = "usercache" ref = "usercache"/>
  4. <Property name = "passwordencoder" ref = "passwordencoder"/> <! -Optional -->
  5. </Bean>
  6. <Bean id = "anonymousauthenticationprovider" class = "org. acegisecurity. providers. Anonymous. anonymousauthenticationprovider">
  7. <Property name = "key" value = "anonymous"/>
  8. </Bean>
  10. <Bean id = "userdao" class = "com. CJM. Web. Dao. impl. userdaoimpl">
  11. <Property name = "sessionfactory" ref = "sessionfactory"/>
  12. </Bean>
  14. <Bean id = "usercache" class = "org. acegisecurity. providers. Dao. cache. ehcachebasedusercache">
  15. <Property name = "cache">
  16. <Bean class = "org. springframework. cache. ehcache. ehcachefactorybean">
  17. <Property name = "cachemanager">
  18. <Bean class = "org. springframework. cache. ehcache. ehcachemanagerfactorybean"/>
  19. </Property>
  20. <Property name = "cachename" value = "usercache"/>
  21. </Bean>
  22. </Property>
  23. </Bean>
  25. <Bean id = "passwordencoder" class = "org. acegisecurity. providers. encoding. md5passwordencoder"/>
  26. Note:
  27. 1) daoauthenticationprovider: Provides user information, including the user name and password. The username and password retrieval work should be done by userdetailsservice.
  28. 2) anonymousauthenticationprovider: anonymous user authentication.
  29. 3) userdao: used to obtain user information in the database. Userdaoimpl must implement the userdetailsservice interface class provided by acegi.
  30. 4) usercache: caches the permission information of users and resources. Every time a protected resource is requested, daoauthenticationprovider is called to obtain user authorization information. If you get the information from the database every time, it is very costly. for users and resources that are not often changed, it is best to cache the relevant authorization information.
  31. 5) passwordencoder: Use the encryptor to encrypt the plaintext entered by the user. Acegi provides three Encryptors:
  32. Plaintextpasswordencoder --- default, not encrypted, return plaintext
  33. Shapasswordencoder --- hash algorithm (SHA) Encryption
  34. D5passwordencoder --- Message Digest (MD5) Encryption

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More