Maven Dependencies for Spring Security
<
properties
>
<
org.springsecurity-version
>
3.1.0.RELEASE
</
org.springsecurity-version
>
</
properties
>
<!-- Spring Security -->
<
dependency
>
<
groupId
>
org.springframework.security
</
groupId
>
<
artifactId
>
spring-security-core
</
artifactId
>
<
version
>
${org.springsecurity-version}
</
version
>
</
dependency
>
<
dependency
>
<
groupId
>
org.springframework.security
</
groupId
>
<
artifactId
>
spring-security-web
</
artifactId
>
<
version
>
${org.springsecurity-version}
</
version
>
</
dependency
>
<
dependency
>
<
groupId
>
org.springframework.security
</
groupId
>
<
artifactId
>
spring-security-config
</
artifactId
>
<
version
>
${org.springsecurity-version}
</
version
>
</
dependency
>
<
dependency
>
<
groupId
>
org.springframework.security
</
groupId
>
<
artifactId
>
spring-security-taglibs
</
artifactId
>
<
version
>
${org.springsecurity-version}
</
version
>
</
dependency
>
Configuring Spring Security
web.xml
<!-- Spring Security Configuration -->
<
filter
>
<
filter-name
>
springSecurityFilterChain
</
filter-name
>
<
filter-class
>
org.springframework.web.filter.DelegatingFilterProxy
</
filter-class
>
</
filter
>
<
filter-mapping
>
<
filter-name
>
springSecurityFilterChain
</
filter-name
>
<
url-pattern
>
/*
</
url-pattern
>
</
filter-mapping
>
security-context.xml
<?
xml
version
=
"1.0"
encoding
=
"UTF-8"
?>
<
beans:beans
xmlns
=
"http://www.springframework.org/schema/security"
xmlns:beans
=
"http://www.springframework.org/schema/beans"
xmlns:xsi
=
"http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation
=
"http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd"
>
<
http
use-expressions
=
"true"
>
<
intercept-url
pattern
=
'/*'
access
=
'permitAll'
/>
<
form-login
login-page
=
"/contacts"
authentication-failure-url
=
"/security/loginfail"
default-target-url
=
"/contacts"
/>
<
logout
logout-success-url
=
"/contacts"
/>
</
http
>
<
authentication-manager
>
<
authentication-provider
>
<
user-service
>
<
user
name
=
"user"
password
=
"user"
authorities
=
"ROLE_USER"
/>
</
user-service
>
</
authentication-provider
>
</
authentication-manager
>
</
beans:beans
>
root-context.xml
<import resource="security-context.xml"/>