Announcement Announcement Module
No announcement yet.
<http> namespace configuration & FilterChainProxy Page Title Module
Move Remove Collapse
Conversation Detail Module
  • Filter
  • Time
  • Show
Clear All
new posts

  • <http> namespace configuration & FilterChainProxy

    There is need to specify application filters for certain URLs. The following definition can be used for that -
    Method 1:
    <beans:bean id="springSecurityFilterChain" class=" nProxy">
    <security:filter-chain-map path-type="ant">
    <security:filter-chain pattern="/app/someurl/**" filters="siteFilter, applicationFilter1, applicationFilter2" />
    Using the above definition fine grained access to define the filter chain for a particular URL pattern can be achieved.
    However there is also need for defining access for URL pattern
    Method 2:
    <http use-expressions="true">
    <custom-filter position="PRE_AUTH_FILTER" ref="siteFilter" />
    <intercept-url pattern="/css/**" filters="none"/>
    <intercept-url pattern="/describeName/**" access="permitAll" />
    <form-login/> <!-- This is needed as the http element excepts login to be configured-->

    Can <http> namespace as well as the fine grained filter definition at URL level which can be done using FilterChainProxy (Method 1) be used in combination?

    Thanks in advance