SAYIT/sayit.helpdesk
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
Files
dca7c687c8bad15aadb07e6fefd1df550602fdb9
sayit.helpdesk/src/main/resources/egovframework/spring/com/context-security.xml
dykim 58d246a993
Some checks failed
Main-Build / build-and-push (push) Failing after 22s
Details
무중단 배포용 /health 200 응답 기능 Spring Security 예외 처리 추가
2025-12-08 16:24:34 +09:00

78 lines
3.7 KiB
XML
Raw Blame History

<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:egov-security="http://www.egovframe.go.kr/schema/egov-security"
xmlns:security="http://www.springframework.org/schema/security"
xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-3.2.xsd
http://www.egovframe.go.kr/schema/egov-security http://www.egovframe.go.kr/schema/egov-security/egov-security-3.0.xsd">
<!--
수정일 수정자 수정내용
========= ======= =================================================
2011.09.07 서준식 일반, 업무사용자의 경우 조직아이디가 없어 로그인이 안되던 문제 수정(SQL 수정)
2011.09.25 서준식 usersByUsernameQuery 쿼리의 조직 아이디 비교 부분 오류 수정 > alias 추가
2014.06.13 Vincent Han 표준프레임워크 3.0 적용 (간소화 설정 사용)
-->
<security:http pattern="/css/**" security="none"/>
<security:http pattern="/html/**" security="none"/>
<security:http pattern="/images/**" security="none"/>
<security:http pattern="/js/**" security="none"/>
<security:http pattern="/resource/**" security="none"/>
<security:http pattern="\A/WEB-INF/jsp/.*\Z" request-matcher="regex" security="none"/>
<security:http pattern="/health.do" security="none"/>
<egov-security:config id="securityConfig"
loginUrl="/login.do"
logoutSuccessUrl="/login.do"
loginFailureUrl="/login.do?login_error=1"
accessDeniedUrl="/sec/ram/accessDenied.do"
dataSource="egov.dataSource"
jdbcUsersByUsernameQuery="SELECT ESNTL_ID AS USER_ID, ESNTL_ID AS PASSWORD, 1 ENABLED, USER_NM, USER_ZIP, USER_ADRES, USER_EMAIL, USER_SE, ORGNZT_ID, ESNTL_ID, ORGNZT_NM, TEL, POSITION_NM FROM COMVNUSERMASTER2 WHERE CONCAT(USER_SE, ESNTL_ID) = ?"
jdbcAuthoritiesByUsernameQuery="SELECT C.USER_ID, B.AUTHOR_CODE AS AUTHORITY
FROM HMS_AUTH_GROUP A, HMS_AUTH_GROUP_REL_AUTH B, AUTHUSERVIEW C
WHERE C.USER_ID=? AND C.AUTH_GROUP_SEQ = A.AUTH_GROUP_SEQ AND A.AUTH_GROUP_SEQ = B.AUTH_GROUP_SEQ
UNION SELECT '0000', 'IS_AUTHENTICATED_FULLY' FROM DUAL"
jdbcMapClass="egovframework.main.service.EgovSessionMapping"
requestMatcherType="regex"
hash="plaintext"
hashBase64="false"
concurrentMaxSessons="20"
concurrentExpiredUrl="/login.do"
defaultTargetUrl="/actionLoginUser.do"
/>
<egov-security:secured-object-config id="securedObjectConfig"
sqlHierarchicalRoles="
SELECT a.CHLDRN_ROLE child, a.PARNTS_ROLE parent
FROM COMTNROLES_HIERARCHY a LEFT JOIN COMTNROLES_HIERARCHY b on (a.CHLDRN_ROLE = b.PARNTS_ROLE)"
sqlRolesAndUrl="
SELECT a.ROLE_PTTRN url, b.AUTHOR_CODE authority
FROM COMTNROLEINFO a, COMTNAUTHORROLERELATE b
WHERE a.ROLE_CODE = b.ROLE_CODE
AND a.ROLE_TY = 'url' ORDER BY a.ROLE_SORT"
sqlRolesAndMethod="
SELECT a.ROLE_PTTRN method, b.AUTHOR_CODE authority
FROM COMTNROLEINFO a, COMTNAUTHORROLERELATE b
WHERE a.ROLE_CODE = b.ROLE_CODE
AND a.ROLE_TY = 'method' ORDER BY a.ROLE_SORT"
sqlRolesAndPointcut="
SELECT a.ROLE_PTTRN pointcut, b.AUTHOR_CODE authority
FROM COMTNROLEINFO a, COMTNAUTHORROLERELATE b
WHERE a.ROLE_CODE = b.ROLE_CODE
AND a.ROLE_TY = 'pointcut' ORDER BY a.ROLE_SORT"
sqlRegexMatchedRequestMapping="
SELECT a.resource_pattern uri, b.authority authority
FROM COMTNSECURED_RESOURCES a, COMTNSECURED_RESOURCES_ROLE b
WHERE a.resource_id = b.resource_id
AND a.resource_type = 'url'"
/>
<egov-security:initializer id="initializer" supportMethod="true" supportPointcut="false" />
</beans>
Reference in New Issue View Git Blame Copy Permalink