x509 - Spring x.509 authentication only for certain port -


i have following scenario in spring app:

  • all connections port 8440 have one-side https authentication (only server authenticated)
  • all connections port 8441 have two-size http authentication (so client must provide valid x.509 cert)

how can configure spring-security.xml file achieve this? ideally, i'd able express this:

<http port=8441 use-expressions="true">   <http-basic entry-point-ref="ambarientrypoint" />   <intercept-url pattern="/**" access="permitall()" method="get"/>   <intercept-url pattern="/**" access="hasrole('admin')" method="delete"/>   <x509 subject-principal-regex="(.*)" /> </http> <http port=8440 use-expressions="true">   <http-basic entry-point-ref="ambarientrypoint" />   <intercept-url pattern="/**" access="permitall()" /> </http>

is way accomplish this?

unfortunately, can not spring security. client authentication performed servlet container (or webserver behind it). can configure 2 different web applications. need configure servlet container client certificate authentication first application , ssl second application. spring security allow take client certificate information using <x509> filter


Comments

Post a Comment

Popular posts from this blog

c# - Operator '==' incompatible with operand types 'Guid' and 'Guid' using DynamicExpression.ParseLambda<T, bool> -

i'm using dynamic linq library , there source code , basic docu , nuget version pm> install-package dynamiclinq i'm trying construct clause involves guids i have tried string "id == @0" . parameter array object[] value ( guid xxxx ) var whereclausesb = buildlogicalkeywhereclause2(entity, logicalkey); //build string var parms = buildparamarray(entity, logicalkey); // object[] var wherelambda = ofsi.bos.core.dynamicexpression.parselambda<t, bool>(whereclausesb.tostring(),parms); //parse an exception thrown in dynamicexpression.parselambda operator '==' incompatible operand types 'guid' , 'guid' i have tried guid , string.(fail) i tried , "id = @0" (fail). string == string works, int32==int32 not guid == guid not any ideas? try using equals method instead of == operator in string: "id.equals(@0)"
Read more