Storefront
BEA AquaLogic Commerce Services Deployment Guide 23
• hibernate-config.xml
• quartz.xml
• treecache.xml
• velocity.xml
• util-config.xml
acegi.xml
AquaLogic Commerce Services uses the Acegi security framework to perform user authentication
and authorization.
The acegi.xml file for configuring acegi is located in the following application-specific paths.
Since the acegi.xml file contains different settings for each application, you will need to configure
each of them separately.
• Storefront – < >\commerceServices\WEB-INF\conf\spring\security\
• Commerce Manager – <ALCS_APP_HOME>\commerceServicesManager\WEB-
INF\conf\spring\security\
• Connect – <ALCS_APP_HOME>\commerceServicesConnect\WEB-
INF\conf\spring\security\
Configuring the HTTPS port redirect
Specify your HTTP port number in the <entry> tag as described in the example below.
In acegi.xml, specify the HTTP port number in the key attribute of the entry tag and the HTTPS
port number in the <value> tag as shown in the example below. This allows the application server
switch to the HTTPS port for pages that require it. Not all URLs in an application are secure. For
each application, we have specified a default list of URLs which are secure. You can modify
these lists if desired as explained in the Acegi - security framework section of the AquaLogic
Commerce Services Developer Guide.
In the example below, we have specified the standard port numbers of 80 for HTTP and 443 for
HTTPS.
<!-- port # are specified in default.xml -->
<bean id="portMapper"
class="org.acegisecurity.util.PortMapperImpl">
<property name="portMappings">
<map>
<entry key="80"><value>443</value></entry>
</map>
</property>
</bean>
