Tag: 弹簧安全

使用后端Spring Security Java EE服务器和前端iOS Objective-C客户端进行身份validation

我想validation在Java EE服务器后端连接到他的iOS应用程序上的用户。 在这里，你可以find我的spring安全configuration后端： <?xml version="1.0" encoding="UTF-8"?> <beans:beans xmlns="http://www.springframework.org/schema/security" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:beans="http://www.springframework.org/schema/beans" xmlns:p="http://www.springframework.org/schema/p" xmlns:util="http://www.springframework.org/schema/util" xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd"> <http auto-config="true" use-expressions="true"> <intercept-url pattern="/home.mediator" access="permitAll" /> <intercept-url pattern="/loginInvalid.security" access="permitAll" /> <intercept-url pattern="/logout*" access="permitAll" /> <intercept-url pattern="/user**" access="hasRole('ROLE_USER')"/> <intercept-url pattern="/admin**" access="hasRole('ROLE_ADMIN')"/> <intercept-url pattern="/*" access="isAuthenticated()" /> <form-login login-page="/home.mediator" default-target-url="/loginValid.security" authentication-failure-url="/loginInvalid.security" /> <logout invalidate-session="true" logout-success-url="/logoutSuccess.security" logout-url="/logout.do"/> </http> <authentication-manager> <authentication-provider […]