rkflow.workflow-web.1.3.0.source-code.workflow-console-security-context.xml Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of workflow-web Show documentation
Show all versions of workflow-web Show documentation
Telekom-workflow-engine web console, REST services and JMX interface for monitoring and interacting with the running engine.
<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:sec="http://www.springframework.org/schema/security"
xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
<sec:http auto-config="true" disable-url-rewriting="true" use-expressions="true">
<!-- TODO ERKO: temporary hack to allow REST API usage without authentication -->
<sec:intercept-url pattern="/api/**" access="isAnonymous()"/>
<sec:intercept-url pattern="/login/**" access="permitAll"/>
<sec:intercept-url pattern="/css/**" access="permitAll"/>
<sec:intercept-url pattern="/js/**" access="permitAll"/>
<sec:intercept-url pattern="/images/**" access="permitAll"/>
<sec:intercept-url pattern="/console/workflow/create" access="hasRole('ROLE_TWE_ADMIN')"/>
<sec:intercept-url pattern="/**" access="hasAnyRole('ROLE_TWE_USER','ROLE_TWE_ADMIN')"/>
<sec:access-denied-handler error-page="/login" />
<sec:form-login login-page="/login" authentication-failure-url="/login?error=invalid"
login-processing-url="/processlogin" username-parameter="username" password-parameter="password"/>
<sec:logout logout-success-url="/login" invalidate-session="true" logout-url="/processlogout"/>
</sec:http>
<sec:authentication-manager>
<sec:authentication-provider ref="webConsoleAuthenticationProvider"/>
</sec:authentication-manager>
</beans> © 2015 - 2025 Weber Informatics LLC | Privacy Policy