我有 2 个组 ts_admin 和 ts_users。从登录页面,登录后的管理员应该直接进入管理员视图,用户进入用户视图。我不知道该怎么做,我需要帮助。我已经加载了一个包含安全约束的 XML 页面,也许我们可以从那时起更进一步。
<welcome-file-list>
<welcome-file>index.html</welcome-file>
</welcome-file-list>
<security-constraint>
<display-name>timesheet user permission</display-name>
<web-resource-collection>
<web-resource-name>timesheet_user_resources</web-resource-name>
<url-pattern>/index.html</url-pattern>
<url-pattern>/</url-pattern>
<url-pattern>/rs/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
<http-method>PUT</http-method>
<http-method>DELETE</http-method>
<http-method>OPTIONS</http-method>
</web-resource-collection>
<auth-constraint>
<role-name>ts_users</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
<security-role>
<role-name>ts_users</role-name>
</security-role>
<security-role>
<role-name>ts_admins</role-name>
</security-role>
<security-constraint>
<display-name>timesheet admin permissions</display-name>
<web-resource-collection>
<web-resource-name>timesheet_admin_resources</web-resource-name>
<url-pattern>/rs/*</url-pattern>
<url-pattern>/indexAdmin.html</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
<http-method>PUT</http-method>
<http-method>DELETE</http-method>
<http-method>OPTIONS</http-method>
</web-resource-collection>
<auth-constraint>
<role-name>ts_admins</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<realm-name>MyRealm</realm-name>
<form-login-config id="FormLoginConfig_1">
<form-login-page>/login.html</form-login-page>
<form-error-page>/error.html</form-error-page>
</form-login-config>
</login-config>