在使用xml配置spring security时经常会看到下面类似的配置:
<security:http entry-point-ref="multipleAuthenticationLoginEntry" servlet-api-provision="true">
<!--
<security:session-management invalid-session-url="/loginRedirect.jtl">
<security:concurrency-control error-if-maximum-exceeded="false" max-sessions="1" expired-url="/loginRedirect.jtl"/>
</security:session-management>
-->
<!--使用表单登录-->
<security:remember-me key="xx"/>
<security:logout logout-url="/logout" logout-success-url="/loginRedirect.jtl"/>
<security:custom-filter ref="xxFilter" after="FORM_LOGIN_FILTER" />
<security:custom-filter before="FILTER_SECURITY_INTERCEPTOR" ref="xx1Filter" />
<security:access-denied-handler ref="xxHandler"/>
<security:custom-filter position="SWITCH_USER_FILTER" ref="xx2Filter"/>
</security:http>
那么上面标红部分配置在哪里呢,笔者将相关部门摘抄下来,分享至此:
根据上面这个对照表,可以进一步分析以及作为使用参考。
阅读更多
---------------------
作者:johnHuster
来源:CSDN
原文:https://blog.csdn.net/john1337/article/details/77043424
版权声明:本文为博主原创文章,转载请附上博文链接!