<pre name="code" class="html"><?xml version="1.0" encoding="UTF-8"?>
<beans:beans xmlns="http://www.springframework.org/schema/security"
xmlns:beans="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans-4.0.xsd
http://www.springframework.org/schema/security
http://www.springframework.org/schema/security/spring-security-4.0.xsd">
<!-- 静态资源配置,注意:**代表可以多级目录 -->
<http pattern="/**/*.png" security="none"/>
<http pattern="/**/*.jpg" security="none"/>
<http pattern="/**/*.gif" security="none"/>
<http pattern="/**/*.css" security="none"/>
<http pattern="/**/*.js" security="none"/>
<!-- 登录页,不需要拦截 -->
<http pattern="/user/login.htm" security="none"/>
<!-- 验证码不校验 -->
<http pattern="/verify/*" security="none"/>
<http>
<!--拦截所有地址,除非有ROLE_USER权限-->
<intercept-url pattern="/**" access="hasRole('ROLE_USER')"/>
<!-- 登录界面 -->
<form-login login-page="/user/login.htm" default-target-url="/index"
always-use-default-target="true"/>
</http>
<authentication-manager>
<authentication-provider>
<user-service>
<user name="yjmyzz" password="123456" authorities="ROLE_USER"/>
</user-service>
</authentication-provider>
</authentication-manager>
</beans:beans>
SPRING-SECURITY安全Web框架配置
最新推荐文章于 2024-08-23 23:02:53 发布