SEC-487: Added documentation on use of #NONE# in FilterChainProxy. Also changed doc version to 1.0.5.

doc/docbook/acegi.xml

@@ -27,7 +27,7 @@
 
     <subtitle>Reference Documentation</subtitle>
 
-    <releaseinfo>1.0.4</releaseinfo>
+    <releaseinfo>1.0.5</releaseinfo>
 
     <authorgroup>
       <author>
@@ -1068,6 +1068,19 @@ if (obj instanceof UserDetails) {
         any servlet container lifecycle invocations are not delegated through
         to <literal>FilterChainProxy</literal>.</para>
 
+        <para>You can also omit a URI pattern from the filter chain by using
+        the token <literal>#NONE#</literal> on the right-hand side of the
+        <literal>&lt;URI Pattern&gt; = &lt;Filter Chain&gt;</literal> expression. For example, using
+         the example above, if you wanted to exclude the <filename>/webservices</filename>
+         location completely, you would modify the corresponding line in the bean declaration to be
+        <programlisting>
+/webServices/**=#NONE#
+        </programlisting>
+          Note that anything matching this path will then have no authentication
+          or authorization services applied and will be freely accessible.
+        </para>
+
+
         <para>The order that filters are defined in <literal>web.xml</literal>
         is very important. Irrespective of which filters you are actually
         using, the order of the <literal>&lt;filter-mapping&gt;</literal>s