简体   繁体   English

security:http在spring安全配置中?

[英]security:http in spring security configuration?

What is the real use of the security:http element in the spring security configurations. 在spring安全配置中,security:http元素的真正用途是什么。 Is it applicable only for the web applications? 它仅适用于Web应用程序吗?

Please see the following code: 请参见以下代码:

<security:http use-expressions="true">
        <security:intercept-url pattern="/client/**"
            access="isAuthenticated()" />
        <security:intercept-url pattern="/**" access="permitAll" />
        <security:form-login></security:form-login>
        <security:logout />
        <security:remember-me />

        <security:session-management
            invalid-session-url="/timeout.jsp">
            <security:concurrency-control
                max-sessions="1" error-if-maximum-exceeded="true" />
        </security:session-management>

    </security:http>

Explain it if you can. 如果可以的话,请解释一下。

The <http> element is only applicable to web applicaitons. <http>元素仅适用于Web应用程序。 You should probably start with the namespace chapter of the manual. 您可能应该从手册的名称空间一章开始。

There is also an appendix , which lists each element/attribute and their function. 还有一个附录 ,列出了每个元素/属性及其功能。

I found the xsd documentation helpful. 我发现xsd文档很有帮助。 check this out. 看一下这个。

http://www.springframework.org/schema/security/spring-security.xsd http://www.springframework.org/schema/security/spring-security.xsd

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM