security:http in spring security configuration?
Question
What is the real use of the security:http element in the spring security configurations. Is it applicable only for the web applications?
Please see the following code:
<security:http use-expressions="true">
<security:intercept-url pattern="/client/**"
access="isAuthenticated()" />
<security:intercept-url pattern="/**" access="permitAll" />
<security:form-login></security:form-login>
<security:logout />
<security:remember-me />
<security:session-management
invalid-session-url="/timeout.jsp">
<security:concurrency-control
max-sessions="1" error-if-maximum-exceeded="true" />
</security:session-management>
</security:http>
Explain it if you can.
2 answers
solution1
1 ACCPTED 2012-02-15 20:53:56
The <http> element is only applicable to web applicaitons. You should probably start with the namespace chapter of the manual.
There is also an appendix , which lists each element/attribute and their function.
solution2
0 2012-02-15 10:55:01
I found the xsd documentation helpful. check this out.
http://www.springframework.org/schema/security/spring-security.xsd
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.