Jul 5th, 2012, 01:16 PM
<http> namespace configuration & FilterChainProxy
There is need to specify application filters for certain URLs. The following definition can be used for that -
<beans:bean id="springSecurityFilterChain" class="org.springframework.security.web.FilterChai nProxy">
<security:filter-chain pattern="/app/someurl/**" filters="siteFilter, applicationFilter1, applicationFilter2" />
Using the above definition fine grained access to define the filter chain for a particular URL pattern can be achieved.
However there is also need for defining access for URL pattern
<custom-filter position="PRE_AUTH_FILTER" ref="siteFilter" />
<intercept-url pattern="/css/**" filters="none"/>
<intercept-url pattern="/describeName/**" access="permitAll" />
<form-login/> <!-- This is needed as the http element excepts login to be configured-->
Can <http> namespace as well as the fine grained filter definition at URL level which can be done using FilterChainProxy (Method 1) be used in combination?
Thanks in advance