Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-07-09 11:53:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

Minor formatting

Browse Source
This commit is contained in:
Luke Taylor 2008-08-06 00:19:46 +00:00
parent 3ee3591feb
commit f31bcbee07
1 changed files with 15 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
src/docbkx/anon-auth-provider.xml
View File

@ -1,9 +1,11 @@
<chapter xmlns="http://docbook.org/ns/docbook" version="5.0" xml:id="anonymous"><info><title>Anonymous Authentication</title></info> <chapter xmlns="http://docbook.org/ns/docbook" version="5.0" xml:id="anonymous">
<info><title>Anonymous Authentication</title></info>
<section xml:id="anonymous-overview"><info><title>Overview</title></info> <section xml:id="anonymous-overview">
<info><title>Overview</title></info>
<para>Particularly in the case of web request URI security, sometimes <para>Particularly in the case of web request URI security, sometimes
it is more convenient to assign configuration attributes against every it is more convenient to assign configuration attributes against every
possible secure object invocation. Put differently, sometimes it is possible secure object invocation. Put differently, sometimes it is
@ -20,9 +22,9 @@
<literal>null</literal>.</para> <literal>null</literal>.</para>
</section> </section>
<section xml:id="anonymous-config"><info><title>Configuration</title></info> <section xml:id="anonymous-config">
<info><title>Configuration</title></info>
<para>Spring Security provides three classes that together provide an <para>Spring Security provides three classes that together provide an
anonymous authentication feature. anonymous authentication feature.
<literal>AnonymousAuthenticationToken</literal> is an implementation <literal>AnonymousAuthenticationToken</literal> is an implementation
@ -38,7 +40,7 @@
<literal>SecurityContextHolder</literal> if there is no existing <literal>SecurityContextHolder</literal> if there is no existing
<literal>Authentication</literal> held there. The definition of the <literal>Authentication</literal> held there. The definition of the
filter and authentication provider appears as follows:</para> filter and authentication provider appears as follows:</para>
<para><programlisting> <para><programlisting>
<![CDATA[ <![CDATA[
<bean id="anonymousProcessingFilter" <bean id="anonymousProcessingFilter"
@ -52,7 +54,7 @@
<property name="key" value="foobar"/> <property name="key" value="foobar"/>
</bean>]]> </bean>]]>
</programlisting></para> </programlisting></para>
<para>The <literal>key</literal> is shared between the filter and <para>The <literal>key</literal> is shared between the filter and
authentication provider, so that tokens created by the former are authentication provider, so that tokens created by the former are
accepted by the latter. The <literal>userAttribute</literal> is accepted by the latter. The <literal>userAttribute</literal> is
@ -61,13 +63,13 @@
This is the same syntax as used after the equals sign for This is the same syntax as used after the equals sign for
<literal>InMemoryDaoImpl</literal>'s <literal>userMap</literal> <literal>InMemoryDaoImpl</literal>'s <literal>userMap</literal>
property.</para> property.</para>
<para>As explained earlier, the benefit of anonymous authentication is <para>As explained earlier, the benefit of anonymous authentication is
that all URI patterns can have security applied to them. For that all URI patterns can have security applied to them. For
example:</para> example:</para>
<para><programlisting> <para><programlisting>
<![CDATA[ <![CDATA[
<bean id="filterInvocationInterceptor" <bean id="filterInvocationInterceptor"
class="org.springframework.security.intercept.web.FilterSecurityInterceptor"> class="org.springframework.security.intercept.web.FilterSecurityInterceptor">
<property name="authenticationManager" ref="authenticationManager"/> <property name="authenticationManager" ref="authenticationManager"/>
@ -100,4 +102,4 @@
an opportunity to login via form, basic, digest or some other normal an opportunity to login via form, basic, digest or some other normal
authentication mechanism</para> authentication mechanism</para>
</section> </section>
</chapter> </chapter>