Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
sunwei
/
tongyu_leader
Xem 1
Star 0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Branch: master
Branches Tags
tongyu_leader
/
target
/
classes
/
spring
/
spring-context-shiro.xml

spring-context-shiro.xml 8.6 KB
Permalink Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183 
  1. <?xml version="1.0" encoding="UTF-8"?>
    2. 

  2. <beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    3. 

  3. 	xmlns:context="http://www.springframework.org/schema/context" xsi:schemaLocation="
    4. 

  4. 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-4.0.xsd
    5. 

  5. 		http://www.springframework.org/schema/context  http://www.springframework.org/schema/context/spring-context-4.0.xsd"
    6. 

  6. 	default-lazy-init="true">
    7. 

  7. 

  8. 	<description>Shiro Configuration</description>
    9. 

  9. 

  10.     <!-- 加载配置属性文件 -->
    11. 

  11. 	<context:property-placeholder ignore-unresolvable="true" location="classpath:/properties/jeeplus.properties" />
    12. 

  12. 

  13. 	<!-- Shiro权限过滤过滤器定义 -->
    14. 

  14. 	<bean name="shiroFilterChainDefinitions" class="java.lang.String">
    15. 

  15. 		<constructor-arg>
    16. 

  16. 			<value>
    17. 

  17. 				/static/** = anon
    18. 

  18. 				/userfiles/** = anon
    19. 

  19. 				${adminPath}/sys/user/infoCareStatus = anon
    20. 

  20. 				${adminPath}/sys/user/validateLoginName = anon
    21. 

  21. 				${adminPath}/sys/user/validateMobile = anon
    22. 

  22. 				${adminPath}/sys/user/validateMobileExist = anon
    23. 

  23. 				${adminPath}/sys/user/resetPassword = anon
    24. 

  24. 				${adminPath}/sys/office/getFirst = anon
    25. 

  25. 				${adminPath}/sys/office/getByParent = anon
    26. 

  26. 				${adminPath}/sys/register = anon
    27. 

  27. 				${adminPath}/sys/register/getCode = anon
    28. 

  28. 				${adminPath}/sys/register/register = anon
    29. 

  29. 				${adminPath}/sys/register/registerUser = anon
    30. 

  30. 				${adminPath}/sys/register/getRegisterCode = anon
    31. 

  31. 				${adminPath}/sys/register/validateMobileCode = anon
    32. 

  32. 				${adminPath}/soft/sysVersion/getAndroidVer = anon
    33. 

  33. 				${adminPath}/soft/sysVersion/getIosVer = anon
    34. 

  34. 				${adminPath}/app/type/appConsultationType/newsType = anon
    35. 

  35. 				${adminPath}/app/news/appConsultation/data = anon
    36. 

  36. 				${adminPath}/app/news/appConsultation/getDetail = anon
    37. 

  37.                 ${adminPath}/app/news/appConsultation/display = anon
    38. 

  38. 				${adminPath}/app/url/appConsultationLink/url = anon
    39. 

  39. 				${adminPath}/leader/org/leaderOrgNo/getFirstOrg = anon
    40. 

  40. 				${adminPath}/leader/org/leaderOrgNo/getChildOrg = anon
    41. 

  41. 				${adminPath}/app/base/appBaseNews/dataList = anon
    42. 

  42. 				${adminPath}/app/base/appBaseNews/getDetail = anon
    43. 

  43. 				${adminPath}/app/base/appBaseNews/getNav = anon
    44. 

  44. 				${adminPath}/app/base/appPartyBuilding/dataList = anon
    45. 

  45. 				${adminPath}/app/base/appPartyBuilding/getAppPartyBuilding = anon
    46. 

  46. 				${adminPath}/app/complaint/appComplaintInfo/save = anon
    47. 

  47. 				${adminPath}/app/collection/appCollection/** = anon
    48. 

  48. 				${adminPath}/app/memo/appMemo/** = anon
    49. 

  49. 				${adminPath}/app/phonebook/appPhoneBook/** = anon
    50. 

  50. 				${adminPath}/leader/sign/leaderVillageSign/save = anon
    51. 

  51. 				${adminPath}/leader/sign/leaderVillageSign/getTodaySign = anon
    52. 

  52. 				${adminPath}/app/record/appActivityRecord/data = anon
    53. 

  53. 				${adminPath}/app/record/appActivityRecord/activityList = anon
    54. 

  54. 				${adminPath}/app/record/appActivityRecord/save = anon
    55. 

  55. 				${adminPath}/app/report/appReport/save = anon
    56. 

  56. 				${adminPath}/app/leave/appLeave/approval = anon
    57. 

  57. 				${adminPath}/app/leave/appLeave/data = anon
    58. 

  58. 				${adminPath}/app/leave/appLeave/save  = anon
    59. 

  59. 				${adminPath}/app/resources/appResources/save  = anon
    60. 

  60. 				${adminPath}/app/resources/appResources/data  = anon
    61. 

  61. 				${adminPath}/app/resources/appResourcesApproval/data  =  anon
    62. 

  62. 				${adminPath}/app/resources/appResourcesApproval/save  =  anon
    63. 

  63. 				${adminPath}/app/resources/appResourcesApproval/approval = anon
    64. 

  64. 

  65. 				${adminPath}/loginMobile = anon
    66. 

  66. 				${adminPath}/app/info/appInfo/getByType = anon
    67. 

  67. 				${adminPath}/app/suggestion/appSuggestion/save = anon
    68. 

  68. 				${adminPath}/leader/org/leaderOrgNo/getAllOrg = anon
    69. 

  69. 				${adminPath}/leader/org/leaderOrgNo/getService = anon
    70. 

  70. 				${adminPath}/leader/org/leaderOrgNo/getOrg = anon
    71. 

  71. 				${adminPath}/leader/org/leaderOrgNo/getChildOrgs = anon
    72. 

  72. 				${adminPath}/leader/activity/leaderActivity/threeSessions = anon
    73. 

  73. 				${adminPath}/leader/activity/leaderActivity/partyDay = anon
    74. 

  74. 				${adminPath}/leader/app/record/appActivityRecord/activityList = anon
    75. 

  75. 				${adminPath}/leader/app/record/appActivityRecord/data = anon
    76. 

  76. 				${adminPath}/leader/app/record/appActivityRecord/save = anon
    77. 

  77. 				${adminPath}/leader/logs/leaderLogs/uploadLogs = anon
    78. 

  78. 				${adminPath}/leader/logs/leaderLogsPosition/uploadLogs = anon
    79. 

  79. 				${adminPath}/leader/logs/leaderLogsPosition/getLogs = anon
    80. 

  80. 				${adminPath}/leader/activity/leaderActivity/activityList = anon
    81. 

  81. 				${adminPath}/leader/activity/leaderActivity/threeSessions = anon
    82. 

  82. 				${adminPath}/leader/activity/leaderActivity/partyDay  = anon
    83. 

  83. 				${adminPath}/leader/cadre/leaderCadre/dataList  = anon
    84. 

  84. 

  85. 				${adminPath}/leader/meetingRecord/saveMeetingRecord  = anon
    86. 

  86. 				${adminPath}/leader/meetingRecord/updateMeetingRecord  = anon
    87. 

  87. 				${adminPath}/leader/meetingRecord/dataList  = anon
    88. 

  88. 				${adminPath}/leader/meetingRecord/getDetail  = anon
    89. 

  89. 				${adminPath}/leader/meetingRecord/deleteMeetingRecord  = anon
    90. 

  90. 				${adminPath}/leader/meetingRecord/goAppMeetingRecordForm  = anon
    91. 

  91. 				${adminPath}/leader/meetingRecord/goUpdateAppMeetingRecordForm  = anon
    92. 

  92. 				${adminPath}/logout = anon
    93. 

  93. 

  94. 				${adminPath}/cas = cas
    95. 

  95. 				${adminPath}/login = authc
    96. 

  96. 				${adminPath}/** = user
    97. 

  97. 				/act/rest/service/editor/** = perms[act:model:edit]
    98. 

  98. 				/act/rest/service/model/** = perms[act:model:edit]
    99. 

  99. 				/act/rest/service/** = user
    100. 

  100. 				/ReportServer/** = user
    101. 

  101. 

  102. 

  103. 

  104. 			</value>
    105. 

  105. 		</constructor-arg>
    106. 

  106. 	</bean>
    107. 

  107. 

  108. 	<!-- 安全认证过滤器 -->
    109. 

  109. 	<bean id="shiroFilter" class="org.apache.shiro.spring.web.ShiroFilterFactoryBean">
    110. 

  110. 		<property name="securityManager" ref="securityManager" /><!--
    111. 

  111. 		<property name="loginUrl" value="${cas.server.url}?service=${cas.project.url}${adminPath}/cas" /> -->
    112. 

  112. 		<property name="loginUrl" value="${adminPath}/login" />
    113. 

  113. 		<property name="successUrl" value="${adminPath}?login" />
    114. 

  114. 		<property name="filters">
    115. 

  115.             <map>
    116. 

  116.                 <entry key="cas" value-ref="casFilter"/>
    117. 

  117.                 <entry key="authc" value-ref="formAuthenticationFilter"/>
    118. 

  118.             </map>
    119. 

  119.         </property>
    120. 

  120. 		<property name="filterChainDefinitions">
    121. 

  121. 			<ref bean="shiroFilterChainDefinitions"/>
    122. 

  122. 		</property>
    123. 

  123. 	</bean>
    124. 

  124. 

  125. 	<!-- CAS认证过滤器 -->
    126. 

  126. 	<bean id="casFilter" class="org.apache.shiro.cas.CasFilter">
    127. 

  127. 		<property name="failureUrl" value="${adminPath}/login"/>
    128. 

  128. 	</bean>
    129. 

  129. 

  130. 	<!-- 定义Shiro安全管理配置 -->
    131. 

  131. 	<bean id="securityManager" class="org.apache.shiro.web.mgt.DefaultWebSecurityManager">
    132. 

  132. 		<property name="realm" ref="systemAuthorizingRealm" />
    133. 

  133. 		<property name="sessionManager" ref="sessionManager" />
    134. 

  134. 		<property name="cacheManager" ref="shiroCacheManager" />
    135. 

  135. 	</bean>
    136. 

  136. 

  137. 	<!-- 自定义会话管理配置 -->
    138. 

  138. 	<bean id="sessionManager" class="com.jeeplus.core.security.shiro.session.SessionManager">
    139. 

  139. 		<property name="sessionDAO" ref="sessionDAO"/>
    140. 

  140. 

  141. 		<!-- 会话超时时间,单位:毫秒  -->
    142. 

  142. 		<property name="globalSessionTimeout" value="${session.sessionTimeout}"/>
    143. 

  143. 

  144. 		<!-- 定时清理失效会话, 清理用户直接关闭浏览器造成的孤立会话   -->
    145. 

  145. 		<property name="sessionValidationInterval" value="${session.sessionTimeoutClean}"/>
    146. 

  146. <!--  		<property name="sessionValidationSchedulerEnabled" value="false"/> -->
    147. 

  147.  		<property name="sessionValidationSchedulerEnabled" value="true"/>
    148. 

  148. 

  149. 		<property name="sessionIdCookie" ref="sessionIdCookie"/>
    150. 

  150. 		<property name="sessionIdCookieEnabled" value="true"/>
    151. 

  151. 	</bean>
    152. 

  152. 

  153. 	<!-- 指定本系统SESSIONID, 默认为: JSESSIONID 问题: 与SERVLET容器名冲突, 如JETTY, TOMCAT 等默认JSESSIONID,
    154. 

  154. 		当跳出SHIRO SERVLET时如ERROR-PAGE容器会为JSESSIONID重新分配值导致登录会话丢失! -->
    155. 

  155. 	<bean id="sessionIdCookie" class="org.apache.shiro.web.servlet.SimpleCookie">
    156. 

  156. 	    <constructor-arg name="name" value="jeeplus.session.id"/>
    157. 

  157. 	</bean>
    158. 

  158. 

  159. 	<!-- 自定义Session存储容器 -->
    160. 

  160. 

  161. 	<bean id="sessionDAO" class="com.jeeplus.core.security.shiro.session.CacheSessionDAO">
    162. 

  162. 		<property name="sessionIdGenerator" ref="idGen" />
    163. 

  163. 		<property name="activeSessionsCacheName" value="activeSessionsCache" />
    164. 

  164. 		<property name="cacheManager" ref="shiroCacheManager" />
    165. 

  165. 	</bean>
    166. 

  166. 

  167. 	<!-- 定义授权缓存管理器 -->
    168. 

  168. <!-- 	<bean id="shiroCacheManager" class="com.jeeplus.core.security.shiro.cache.SessionCacheManager" /> -->
    169. 

  169. 	<bean id="shiroCacheManager" class="org.nutz.j2cache.shiro.J2CacheManager">
    170. 

  170. 	</bean>
    171. 

  171. 

  172. 	<!-- 保证实现了Shiro内部lifecycle函数的bean执行 -->
    173. 

  173. 	<bean id="lifecycleBeanPostProcessor" class="org.apache.shiro.spring.LifecycleBeanPostProcessor"/>
    174. 

  174. 

  175. 	<!-- AOP式方法级权限检查  -->
    176. 

  176. 	<bean class="org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator" depends-on="lifecycleBeanPostProcessor">
    177. 

  177. 		<property name="proxyTargetClass" value="true" />
    178. 

  178. 	</bean>
    179. 

  179. 	<bean class="org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor">
    180. 

  180.     	<property name="securityManager" ref="securityManager"/>
    181. 

  181. 	</bean>
    182. 

  182. 

  183. </beans>
    184.