SEC-707: Make purpose of form-login attributes clearer. Renamed login-url to login-processing-url

core/src/main/java/org/springframework/security/config/FormLoginBeanDefinitionParser.java

@@ -23,7 +23,7 @@ import org.apache.commons.logging.LogFactory;
 public class FormLoginBeanDefinitionParser implements BeanDefinitionParser {
     protected final Log logger = LogFactory.getLog(getClass());
 
-    static final String ATT_LOGIN_URL = "login-url";
+    static final String ATT_LOGIN_URL = "login-processing-url";
     static final String DEF_LOGIN_URL = "/j_spring_security_check";
 
     static final String ATT_LOGIN_PAGE = "login-page";

core/src/main/resources/org/springframework/security/config/spring-security-2.0.rnc

@@ -225,7 +225,7 @@ form-login =
     element form-login {form-login.attlist, empty}
 form-login.attlist &=
     ## The URL that the login form is posted to. If unspecified, it defaults to /j_spring_security_check.
-    attribute login-url {xsd:string}?
+    attribute login-processing-url {xsd:string}?
 form-login.attlist &=
     ## The URL that will be redirected to after successful authentication, if the user's previous action could not be resumed. This generally happens if the user visits a login page without having first requested a secured operation that triggers authentication. If unspecified, defaults to the root of the application.
     attribute default-target-url {xsd:string}?

core/src/main/resources/org/springframework/security/config/spring-security-2.0.xsd

@@ -579,7 +579,7 @@
     </xs:complexType>
   </xs:element>
   <xs:attributeGroup name="form-login.attlist">
-    <xs:attribute name="login-url" type="xs:string">
+    <xs:attribute name="login-processing-url" type="xs:string">
       <xs:annotation>
         <xs:documentation>The URL that the login form is posted to. If unspecified, it defaults to /j_spring_security_check.</xs:documentation>
       </xs:annotation>