v 1.5.0 RC2

2020-05-16 21:44:46 +08:00
parent 2f0f0ed8eb
commit caa656191a
18 changed files with 517 additions and 540 deletions
--- a/maxkey-web-maxkey/src/main/resources/spring/maxkey.xml
+++ b/maxkey-web-maxkey/src/main/resources/spring/maxkey.xml
@@ -17,28 +17,151 @@
 	        http://www.springframework.org/schema/util/spring-util.xsd
 	        http://www.springframework.org/schema/mvc 
 	        http://www.springframework.org/schema/mvc/spring-mvc.xsd">
-	
-	<!-- Scans the classpath for annotated components that will be auto-registered as Spring beans.
- 	 @Controller and @Service. Make sure to set the correct base-package-->
- 	<context:component-scan base-package="org.maxkey.config" />
- 	<!-- domain bean  -->
- 	<context:component-scan base-package="org.maxkey.domain" />
- 	<context:component-scan base-package="org.maxkey.domain.apps" />
- 	<context:component-scan base-package="org.maxkey.domain.userinfo" />
-	<!-- REST API interface -->
-	<context:component-scan base-package="org.maxkey.api.v1.contorller" />
-	
-	<!-- Business  Contorller -->
-	<context:component-scan base-package="org.maxkey.web.endpoint" />
-	<context:component-scan base-package="org.maxkey.web.contorller" />
-	
+	        
 	<!-- authn support -->
- 	<import resource="maxkey-support.xml"/>
- 	<!-- single sign on protocol -->
- 	<import resource="maxkey-protocol.xml"/>
- 	<!-- Scheduler task  -->
- 	<import resource="maxkey-task.xml"/>
+	<!-- Authentication -->
+    <import resource="maxkey-support-httpheader.xml"/>
+    <import resource="maxkey-support-basic.xml"/>
+    <import resource="maxkey-support-kerberos.xml"/>
+    <import resource="maxkey-support-social.xml"/>
+    <!--  
+    <import resource="maxkey-support-wsfederation.xml"/>
+    <import resource="maxkey-support-jwt.xml"/>
+    -->
+    
+    <!-- single sign on protocol -->
+ 	<!-- Single Sign On for application -->
+    <context:component-scan base-package="org.maxkey.authz.endpoint" />
+    <context:component-scan base-package="org.maxkey.authz.desktop.endpoint" />
+    <context:component-scan base-package="org.maxkey.authz.exapi.endpoint" />
+    <context:component-scan base-package="org.maxkey.authz.formbased.endpoint" />
+    <context:component-scan base-package="org.maxkey.authz.ltpa.endpoint" />
+    <context:component-scan base-package="org.maxkey.authz.token.endpoint" />
+
+    <import resource="maxkey-protocol-cas.xml"/>
+    <import resource="maxkey-protocol-saml.xml"/>
+    <import resource="maxkey-protocol-oauth2.0.xml"/>
+    
 	<!-- Basic Authn  for user login -->
- 	<import resource="maxkey-security.xml"/>
+ 	<!-- enable autowire -->
+    <context:annotation-config />
+    
+    <!-- language select must remove -->
+    <mvc:annotation-driven />
+  
+    <!-- web Controller InterceptorAdapter  -->
+    <mvc:interceptors>
+        <!-- web Controller InterceptorAdapter for platform permission  -->
+        <mvc:interceptor>
+            <!-- for permission -->
+            <mvc:mapping path="/index*/**" />
+            <mvc:mapping path="/logs*/**" />
+            <mvc:mapping path="/userinfo*/**" />
+            <mvc:mapping path="/profile*/**" />
+            <mvc:mapping path="/safe*/**" />
+            <mvc:mapping path="/historys*/**" />
+            <mvc:mapping path="/appList*/**" />
+            <bean class="org.maxkey.web.interceptor.PermissionAdapter" />
+        </mvc:interceptor>  
+        <!-- web Controller InterceptorAdapter for platform log  -->
+        <mvc:interceptor>
+            <mvc:mapping path="/users/*" /> 
+            <mvc:mapping path="/userinfo/*" />
+            <mvc:mapping path="/authInfo/*" />
+            <mvc:mapping path="/retrievePassword/*"/>
+            <bean class="org.maxkey.web.interceptor.HistoryLogsAdapter" />
+        </mvc:interceptor>
+        <!-- web Controller sso Adapter -->
+        <mvc:interceptor>
+            <mvc:mapping path="/authz/basic/*" />
+            <mvc:mapping path="/authz/ltpa/*" />
+            <mvc:mapping path="/authz/desktop/*" />
+            <mvc:mapping path="/authz/formbased/*" />
+            <mvc:mapping path="/authz/tokenbased/*"/>
+            <mvc:mapping path="/authz/saml20/idpinit/*"/>
+            <mvc:mapping path="/authz/saml20/assertion"/>
+            <mvc:mapping path="/authz/cas/login"/>
+            <mvc:mapping path="/authz/cas/granting"/>
+            <bean class="org.maxkey.web.interceptor.PreLoginAppAdapter" />
+        </mvc:interceptor>
+        <!-- web Controller sso Adapter -->
+        <mvc:interceptor>
+            <mvc:mapping path="/authz/basic/*" />
+            <mvc:mapping path="/authz/ltpa/*" />
+            <mvc:mapping path="/authz/desktop/*" />
+            <mvc:mapping path="/authz/formbased/*" />
+            <mvc:mapping path="/authz/tokenbased/*"/>
+            <mvc:mapping path="/authz/saml20/idpinit/*"/>
+            <mvc:mapping path="/authz/saml20/assertion"/>
+            <mvc:mapping path="/authz/cas/granting"/>
+            <bean class="org.maxkey.web.interceptor.HistoryLoginAppAdapter" />
+        </mvc:interceptor>
+
+        
+        <ref bean="localeChangeInterceptor" />
+    </mvc:interceptors>
+
+    <bean id="tfaOptAuthn" class="org.maxkey.crypto.password.opt.impl.TimeBasedOtpAuthn">
+    </bean>
+    <!-- 
+    <bean id="tfaOptAuthn" class="org.maxkey.crypto.password.opt.impl.sms.SmsOtpAuthnYunxin">
+    </bean>
+    -->
+    
+    <!-- for Forgot Password -->
+    <bean id="tfaMailOptAuthn" class="org.maxkey.crypto.password.opt.impl.MailOtpAuthn">
+    </bean>
+    
+    <bean id="tfaMobileOptAuthn" class="org.maxkey.crypto.password.opt.impl.sms.SmsOtpAuthnYunxin">
+    </bean>
+
+    <!-- LDAP Realm 
+    <bean id="authenticationRealm" class="org.maxkey.web.authentication.realm.ldap.LdapAuthenticationRealm">
+        <constructor-arg ref="jdbcTemplate"/>
+        <property name="ldapServers">
+            <list>
+                <bean id="ldapServer1" class="org.maxkey.web.authentication.realm.ldap.LdapServer">
+                    <property name="ldapUtils">
+                        <bean id="ldapUtils" class="org.maxkey.ldap.LdapUtils">
+                            <property name="providerUrl" value="ldap://localhost:389"></property>
+                            <property name="principal" value="cn=root"></property>
+                            <property name="credentials" value="rootroot"></property>
+                            <property name="baseDN" value="dc=connsec,dc=com"></property>
+                        </bean>
+                    </property>
+                    <property name="filterAttribute" value="uid"></property>
+                </bean> 
+            </list>
+        </property>
+    </bean> -->
+    
+    <!-- Active Directory  Realm 
+    <bean id="authenticationRealm" class="org.maxkey.web.authentication.realm.activedirectory.ActiveDirectoryAuthenticationRealm">
+        <constructor-arg ref="jdbcTemplate"/>
+        <property name="activeDirectoryServers">
+            <list>
+                <bean id="activeDirectory1" class="org.maxkey.web.authentication.realm.activedirectory.ActiveDirectoryServer">
+                    <property name="activeDirectoryUtils">
+                        <bean id="ldapUtils" class="org.maxkey.ldap.ActiveDirectoryUtils">
+                            <property name="providerUrl" value="ldap://localhost:389"></property>
+                            <property name="principal" value="cn=root"></property>
+                            <property name="credentials" value="rootroot"></property>
+                            <property name="domain" value="connsec"></property>
+                        </bean>
+                    </property>
+                </bean> 
+            </list>
+        </property>
+    </bean> -->
+    
+    <!-- Default Realm-->
+    <!-- realm use jdbc -->
+    <bean id="authenticationRealm" class="org.maxkey.authn.realm.jdbc.JdbcAuthenticationRealm">
+        <constructor-arg ref="jdbcTemplate"/>
+    </bean>
+   
+    <mvc:annotation-driven />
+
+    <mvc:default-servlet-handler />
 	
 </beans>