Verwaltung von LDAP Accounts und Gruppen
blame | history | raw
Peter Hormanns
2021-02-26 0b810b00e6454cf2d4632edcb983ebfe8db33009 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85

<?xml version="1.0" encoding="UTF-8"?>


<web-app version="3.0" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd">


    <session-config>


        <tracking-mode>COOKIE</tracking-mode>


    </session-config>


    <servlet-mapping>


        <servlet-name>default</servlet-name>


        <url-pattern>/css/*</url-pattern>


        <url-pattern>/webjars/*</url-pattern>


        <url-pattern>*.css</url-pattern>


        <url-pattern>*.js</url-pattern>


    </servlet-mapping>


    <welcome-file-list>


        <welcome-file>/index.jsp</welcome-file>


    </welcome-file-list>


    <error-page>


        <error-code>403</error-code>


        <location>/access-denied.jsp</location>


    </error-page>


    <error-page>


        <error-code>500</error-code>


        <location>/servlet-exception.jsp</location>


    </error-page>


    <error-page>


        <error-code>503</error-code>


        <location>/servlet-exception.jsp</location>


    </error-page>


    <security-constraint>


        <web-resource-collection>


            <web-resource-name>Public access</web-resource-name>


            <url-pattern>/</url-pattern>


            <url-pattern>/index.jsp</url-pattern>


            <url-pattern>*.css</url-pattern>


            <url-pattern>*.js</url-pattern>


            <url-pattern>/css/*</url-pattern>


            <url-pattern>/webjars/*</url-pattern>


            <url-pattern>/logout</url-pattern>


            <url-pattern>/passwordreset</url-pattern>


            <url-pattern>/access-denied.jsp</url-pattern>


            <url-pattern>/servlet-exception.jsp</url-pattern>


        </web-resource-collection>


    </security-constraint>


    <security-constraint>


        <web-resource-collection>


            <web-resource-name>Profile Area</web-resource-name>


            <url-pattern>/profile</url-pattern>


            <url-pattern>/profile/*</url-pattern>


            <url-pattern>/</url-pattern>


        </web-resource-collection>


        <auth-constraint>


            <role-name>admins</role-name>


            <role-name>login</role-name>


        </auth-constraint>


    </security-constraint>


    <security-constraint>


        <web-resource-collection>


            <web-resource-name>Administrative Area</web-resource-name>


            <url-pattern>/user</url-pattern>


            <url-pattern>/user/*</url-pattern>


            <url-pattern>/users</url-pattern>


            <url-pattern>/users/*</url-pattern>


            <url-pattern>/group</url-pattern>


            <url-pattern>/group/*</url-pattern>


            <url-pattern>/groups</url-pattern>


            <url-pattern>/groups/*</url-pattern>


        </web-resource-collection>


        <auth-constraint>


            <role-name>admins</role-name>


        </auth-constraint>


    </security-constraint>


    <login-config>


        <auth-method>FORM</auth-method>


        <realm-name>LDAP Realm</realm-name>


        <form-login-config>


            <form-login-page>/login.jsp</form-login-page>


            <form-error-page>/loginfail.jsp</form-error-page>


        </form-login-config>


    </login-config>


    <security-role>


        <role-name>admins</role-name>


    </security-role>


    <security-role>


        <role-name>login</role-name>


    </security-role>


</web-app>