Discussion :

[skanderb]

Bonjour,
je met en place l'authentification acegi sur une appli web déjà existante.
Mon souci est que losque je lance l'application et que je teste tous les liens passent et les roles que j'ai définit ne sont pas pris en compte.
Voila mon fichier de configuration

Code :

Sélectionner tout - Visualiser dans une fenêtre à part

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
<!-- $Id: module.xml,v 1.40 2008/10/16 15:46:34 bbarban Exp $ -->
 
<beans>
	<bean id="filterChainProxy" class="org.acegisecurity.util.FilterChainProxy">
		<property name="filterInvocationDefinitionSource">
			<value><![CDATA[
				CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
				PATTERN_TYPE_APACHE_ANT
 
                    /assets/**=httpSessionContextIntegrationFilter
      				/j_acegi_security_check=httpSessionContextIntegrationFilter,authenticationProcessingFilter
 
 
 
 
				/**=httpSessionContextIntegrationFilter,logoutFilter,authenticationProcessingFilter,securityContextHolderAwareRequestFilter,rememberMeProcessingFilter,filterInvocationInterceptor
			]]></value>
		</property>
	</bean>
 
	<bean id="httpSessionContextIntegrationFilter" class="org.acegisecurity.context.HttpSessionContextIntegrationFilter"/>
 
	 <bean id="logoutFilter" class="org.acegisecurity.ui.logout.LogoutFilter">
		 <constructor-arg value="/"/>  <!-- URL redirected to after logout -->
		 <constructor-arg>
			  <list>
				<!-- <ref bean="rememberMeServices"/> -->
				<bean class="org.acegisecurity.ui.logout.SecurityContextLogoutHandler"/>
			</list>
		</constructor-arg>
	</bean> 
	<!-- fr.gouv.equipement.connuin.opencms.AuthenticationProcessingFilterconnuin -->
	<bean id="authenticationProcessingFilter" class="org.acegisecurity.ui.webapp.AuthenticationProcessingFilter">
		<property name="authenticationManager" ref="authenticationManager"/>
		<property name="authenticationFailureUrl" value="/"/>
		<property name="defaultTargetUrl" value="/liensAcces.do"/>
		<property name="filterProcessesUrl" value="/j_acegi_security_check"/>
		<property name="rememberMeServices" ref="rememberMeServices"/>
	</bean>
 
	<bean id="securityContextHolderAwareRequestFilter" class="org.acegisecurity.wrapper.SecurityContextHolderAwareRequestFilter"/>
 
	<bean id="rememberMeProcessingFilter" class="org.acegisecurity.ui.rememberme.RememberMeProcessingFilter">
		<property name="authenticationManager" ref="authenticationManager"/>
		<property name="rememberMeServices" ref="rememberMeServices"/>
	</bean>
 
	<bean id="anonymousProcessingFilter" class="org.acegisecurity.providers.anonymous.AnonymousProcessingFilter">
		<property name="key" value="changeThis"/>
		<property name="userAttribute" value="anonymousUser,ROLE_ANONYMOUS"/>
	</bean>
 
	<bean id="exceptionTranslationFilter" class="org.acegisecurity.ui.ExceptionTranslationFilter">
		<property name="authenticationEntryPoint">
			<bean class="org.acegisecurity.ui.webapp.AuthenticationProcessingFilterEntryPoint">
				<property name="loginFormUrl" value="/access/lienAcces.jsp"/>
				<property name="forceHttps" value="false"/>
			</bean>
		</property>
		<!--  <property name="accessDeniedHandler">
			<bean class="org.acegisecurity.ui.AccessDeniedHandlerImpl">
				<property name="errorPage" value="/"/>
			</bean>
		</property>-->
	</bean>
 
 
   <bean id="filterInvocationInterceptor"
		  class="org.acegisecurity.intercept.web.FilterSecurityInterceptor">
		<property name="authenticationManager">
			<ref bean="authenticationManager" />
		</property>
		<property name="accessDecisionManager">
			<ref bean="accessDecisionManager" />
		</property>
		<property name="objectDefinitionSource">
			<value>
				CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
				PATTERN_TYPE_APACHE_ANT
				/liensAcces.do=connuINPRO
				/access/*=ROLECONNU
				/poo/*=60_AUTH
 
			</value>
		</property>
	</bean>
	<!--  <bean id="filterInvocationInterceptor" class="org.acegisecurity.intercept.web.FilterSecurityInterceptor">
		<property name="authenticationManager" ref="authenticationManager"/>
		<property name="accessDecisionManager">
			<bean class="org.acegisecurity.vote.AffirmativeBased">
				<property name="allowIfAllAbstainDecisions" value="false"/>
				<property name="decisionVoters">
					<list>
						<ref bean="roleVoter" />
						<ref bean="authenticatedVoter" />
						 <ref bean="connuinVoter" />
						 <ref bean="modelisationVoter" />  
 
					</list>
				</property>
			</bean>
		</property>
		<property name="objectDefinitionSource">
			<value><![CDATA[
				CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
				PATTERN_TYPE_APACHE_ANT
				/opencms/connexionpro.do=ROLE_ANONYMOUS
				/connexionpro.do=ROLE_ANONYMOUS
				/**=ROLE_AUTH
				/index.jsp=connuINPRO
			]]></value>
		</property>
	</bean>-->
 
 
	<bean id="accessDecisionManager"
		  class="org.acegisecurity.vote.UnanimousBased">
		<property name="allowIfAllAbstainDecisions" value="false"/>
		<property name="decisionVoters">
					<list>
						<ref bean="roleVoter" />
						<ref bean="authenticatedVoter" />
						 <ref bean="connuinVoter" />
						 <ref bean="modelisationVoter" />  
 
					</list>
		  </property>
	</bean>
	<bean id="roleVoter" class="org.acegisecurity.vote.RoleVoter">
		<property name="rolePrefix">
			<value>ROLE_</value>
		</property>
	</bean>
 
	<bean id="connuinVoter" class="fr.gouv.equipement.connuin.opencms.connuinVoter">
		<property name="rolePrefix">
			<value>ROLECONNU</value>
		</property>
	</bean> 
	<bean id="modelisationVoter" class="org.acegisecurity.vote.RoleVoter">
		<property name="rolePrefix">
			<value>60_</value>
		</property>
	</bean> 
 
 
	<bean id="authenticatedVoter" class="org.acegisecurity.vote.AuthenticatedVoter"/>
 
	<bean id="rememberMeServices" class="org.acegisecurity.ui.rememberme.TokenBasedRememberMeServices">
		<property name="userDetailsService" ref="userDetailsService"/>
		<property name="key" value="changeThis"/>
	</bean>
 
	<bean id="authenticationManager" class="org.acegisecurity.providers.ProviderManager">
		<property name="providers">
			<list>
				<ref local="daoAuthenticationProvider"/>
			</list>
		</property>
	</bean>
 
	<bean id="daoAuthenticationProvider" class="org.acegisecurity.providers.dao.DaoAuthenticationProvider">
		<property name="userDetailsService" ref="userDetailsService"/>
		<property name="passwordEncoder"><ref local="passwordEncoder"/></property>
	</bean>
 
	<!-- UserDetailsService is the most commonly frequently Acegi Security interface implemented by end users -->
	<bean id="userDetailsService" class="fr.gouv.equipement.connuin.opencms.Authentificationconnuin">
	</bean>
 
	<!-- This bean is optional; it isn't used by any other bean as it only listens and logs -->
	<bean id="loggerListener" class="org.acegisecurity.event.authentication.LoggerListener"/>
 
	<bean id="passwordEncoder" class="org.acegisecurity.providers.encoding.Md5PasswordEncoder"/>
 
</beans>

[ndp]

salut,

une question bete: pour ton application web existante: c'est du spring-web? du struts?

[skanderb]

ça combine les deux acegi est configuré dans le fichier applicationcontext(spring) et les actions sont développés sous struts est ce que ça pourrait venir de là?