Results 1 to 2 of 2

Thread: Disable Spring security from xml configuration file

  1. Jun 27th, 2012, 11:41 AM #1
    ttts
    ttts is offline Junior Member
    Join Date
    Jun 2012
    Posts
    1

    Default Disable Spring security from xml configuration file

    Hi, I have a small issue and I hope somebody will help with a hint or something.

    I have a simple security spring security on my application and i need to have the ability to switch the security mode on/off by the configuration xml.

    My spring-security.xml

    Code:
    <beans:beans xmlns="http://www.springframework.org/schema/security"
	xmlns:beans="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
	xsi:schemaLocation="http://www.springframework.org/schema/beans 
        http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
        http://www.springframework.org/schema/security 
        http://www.springframework.org/schema/security/spring-security-3.1.xsd">
        
	<http auto-config="true">
		<intercept-url pattern="/*" access="ROLE_ADMIN"/>
		<logout logout-success-url="/mainpage" />
	</http>

	<authentication-manager>
		<authentication-provider>
			<user-service>
				<user name="hey" password="there" authorities="ROLE_ADMIN" />
			</user-service>
		</authentication-provider>
	</authentication-manager>

</beans:beans>
    Maybe there is a simple way to set "disable mode" for it?
    Reply With Quote Reply With Quote
  2. Jun 27th, 2012, 01:10 PM #2
    arthomps
    arthomps is offline Senior Member
    Join Date
    Dec 2008
    Location
    New York City
    Posts
    134

    Default

    Quote Originally Posted by ttts View Post
    Hi, I have a small issue and I hope somebody will help with a hint or something.

    I have a simple security spring security on my application and i need to have the ability to switch the security mode on/off by the configuration xml.

    My spring-security.xml

    Code:
    <beans:beans xmlns="http://www.springframework.org/schema/security"
	xmlns:beans="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
	xsi:schemaLocation="http://www.springframework.org/schema/beans 
        http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
        http://www.springframework.org/schema/security 
        http://www.springframework.org/schema/security/spring-security-3.1.xsd">
        
	<http auto-config="true">
		<intercept-url pattern="/*" access="ROLE_ADMIN"/>
		<logout logout-success-url="/mainpage" />
	</http>

	<authentication-manager>
		<authentication-provider>
			<user-service>
				<user name="hey" password="there" authorities="ROLE_ADMIN" />
			</user-service>
		</authentication-provider>
	</authentication-manager>

</beans:beans>
    Maybe there is a simple way to set "disable mode" for it?
    If you're just looking to disable UI security, then https://jira.springsource.org/browse/SEC-1494 may be appropriate. If you're trying to disable/enable your filters - you might take a look at spring's profiles to pick your filter chain based on your environment variables. I haven't tried that myself though.
    Andrew Thompson - Linked In
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules