This is my spring config. It contains my own userDetailsService because I have my own backend (over soap) I need to authenticate so you must change those parts to match your situation
Martijn <?xml version="1.0" encoding="UTF-8"?> <beans xmlns="http://www.springframework.org/schema/beans"; xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"; xmlns:security="http://www.springframework.org/schema/security"; xsi:schemaLocation= "http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.5.xsd http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-2.0.xsd";> <security:http auto-config="false"> <!-- login page should always be accessible --> <security:intercept-url pattern="/login**/**" filters="none"/> <!-- assets should always be accessible because it contains the default.css file. If even more protection is required you can always allow only default.css. --> <security:intercept-url pattern="/assets/tapestry**/**" filters="none"/> <security:intercept-url pattern="/**" access="ROLE_USER" /> <!-- Use always-use-default-target because it's safer --> <security:form-login login-page="/login" authentication-failure-url="/login/failed" login-processing-url="/check" always-use-default-target="true" default-target-url="/users"/> <security:form-login /> <security:logout /> <security:remember-me /> </security:http> <security:authentication-provider user-service-ref="userDetailsService"> <security:password-encoder ref="passwordEncoder"> <security:salt-source user-property="salt"/> </security:password-encoder> </security:authentication-provider> <bean id="passwordEncoder" class="org.springframework.security.providers.encoding.ShaPasswordEncoder"/> <bean id="saltSource" class="org.springframework.security.providers.dao.salt.ReflectionSaltSource"> <property name="userPropertyToUse" value="salt"/> </bean> <bean id="userDetailsService" class="mitm.mimesecure.web.common.security.UserDetailsServiceImpl"> <constructor-arg ref="passwordEncoder"/> <constructor-arg ref="saltSource"/> </bean> </beans> On Thu, 2008-08-07 at 12:54 -0700, kace wrote: > I changed my web.xml to match yours for the security values but I get the > same issue - it just ignores it. > > What does your <form-login look like in the security file? > > <form-login login-page="/Login" > authentication-failure-url="/Login?error=true" > login-processing-url="/j_security_check" default-target-url="/Index2"/> > > Did you introduce any other changes to get this to work? > > Thanks, > > ..kace > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
