1
Vote

Need help on TomcatSpnegoSpringSecuritySample

description

Hi,
 
I have downloaded the TomcatSpnegoSpringSecuritySample.Can any one please to help run the app.

comments

doumeguerin wrote Aug 15, 2010 at 3:31 PM

Hello,
You must download trunk-15062010.zip. Install one of the versions (dll, jna or tcp). You have examples. After that , and only after, you use TomcatSpnegoSpringSecuritySample.

Dominique

acevedoalberto wrote Mar 20, 2011 at 12:23 AM

Dominique, Below is an upgraded version of the applicationContext-security-kerberos.xml. The context in your example is using Spring security 2.0.2 and the one below is compatible with Spring Security 3.0: <?xml version="1.0" encoding="UTF-8"?> <beans xmlns="http://www.springframework.org/schema/beans" xmlns:sec="http://www.springframework.org/schema/security" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-3.0.xsd"> <bean id="propertyPlaceholderConfigurer" class="org.springframework.beans.factory.config.PropertyPlaceholderConfigurer"> <property name="locations"> <list> <value>/WEB-INF/kerberos.properties</value> </list> </property> <property name="ignoreUnresolvablePlaceholders"><value>true</value></property> </bean> <bean id="entryPoint" class="org.springframework.security.web.authentication.Http403ForbiddenEntryPoint" /> <sec:http auto-config="false" entry-point-ref="entryPoint"> <sec:intercept-url pattern="/" access="IS_AUTHENTICATED_FULLY" /> <sec:custom-filter ref="kerberosFilter" position="PRE_AUTH_FILTER" /> <sec:intercept-url pattern="/folder/**" access="ROLE_ADMIN" /> <sec:intercept-url pattern="/**" access="ROLE_USER" /> <!--sec:logout logout-url="/logout" logout-success-url="/logout.jsp" /--> </sec:http> <bean id="preauthAuthProvider" class="org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider"> <!--sec:custom-authentication-provider /--> <property name="preAuthenticatedUserDetailsService"> <bean id="userDetailsServiceWrapper" class="org.springframework.security.core.userdetails.UserDetailsByNameServiceWrapper"> <property name="userDetailsService" ref="userService" /> </bean> </property> </bean> <sec:authentication-manager alias="authenticationManager" > <sec:authentication-provider ref="preauthAuthProvider"/> </sec:authentication-manager> <bean id="kerberosFilter" class="info.matecki.security.KerberosPreAuthenticatedProcessingFilter"> <!--sec:custom-filter position="PRE_AUTH_FILTER" /--> <property name="authenticationManager" ref="authenticationManager" /> <property name="domainName" value="${kerberos.domain}"/> <property name="stripDomain" value="${kerberos.stripdomain}"/> </bean> <bean id="userService" class="info.matecki.security.BcwebUserDetailsService"> </bean> </beans>

wrote Feb 14, 2013 at 6:57 PM