web.xml 26 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805
  1. <?xml version="1.0" encoding="UTF-8"?>
  2. <web-app xmlns="http://java.sun.com/xml/ns/j2ee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd" version="2.4">
  3. <description>web</description>
  4. <display-name>web</display-name>
  5. <context-param>
  6. <param-name>contextConfigLocation</param-name>
  7. <param-value>/WEB-INF/sso/applicationContext-ssoClient.xml</param-value>
  8. </context-param><context-param>
  9. <param-name>javax.faces.STATE_SAVING_METHOD</param-name>
  10. <param-value>client</param-value>
  11. </context-param><context-param>
  12. <param-name>facelets.SKIP_COMMENTS</param-name>
  13. <param-value>true</param-value>
  14. </context-param><context-param>
  15. <param-name>
  16. org.operamasks.faces.IMPLICIT_NAVIGATION
  17. </param-name>
  18. <param-value>true</param-value>
  19. </context-param>
  20. <context-param>
  21. <param-name>
  22. org.operamasks.faces.COMPATIBLE_NOT_STRICT
  23. </param-name>
  24. <param-value>false</param-value>
  25. </context-param>
  26. <context-param>
  27. <param-name>org.operamasks.faces.SKIN</param-name>
  28. <param-value>waf</param-value>
  29. </context-param>
  30. <context-param>
  31. <param-name>javax.faces.DEFAULT_SUFFIX</param-name>
  32. <param-value>.xhtml</param-value>
  33. </context-param>
  34. <context-param>
  35. <param-name>
  36. org.operamasks.ATTRIBUTE_SETTING_CONFIG_FILE
  37. </param-name>
  38. <param-value>/WEB-INF/attributeSetting.properties</param-value>
  39. </context-param>
  40. <!--cas 3.0 client begin-->
  41. <context-param>
  42. <param-name>facelets.LIBRARIES</param-name>
  43. <param-value>/WEB-INF/taglib/waf.taglib.xml</param-value>
  44. </context-param>
  45. <!-- value: development, production -->
  46. <context-param>
  47. <param-name>productionMode</param-name>
  48. <param-value>production</param-value>
  49. </context-param>
  50. <!-- Light App login filter begin -->
  51. <filter>
  52. <filter-name>CAS Single Sign Out Filter</filter-name>
  53. <filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
  54. </filter>
  55. <filter>
  56. <filter-name>encodingFilter</filter-name>
  57. <filter-class>
  58. org.springframework.web.filter.CharacterEncodingFilter
  59. </filter-class>
  60. <init-param>
  61. <param-name>encoding</param-name>
  62. <param-value>UTF-8</param-value>
  63. </init-param>
  64. <init-param>
  65. <param-name>forceEncoding</param-name>
  66. <param-value>true</param-value>
  67. </init-param>
  68. </filter>
  69. <filter-mapping>
  70. <filter-name>encodingFilter</filter-name>
  71. <url-pattern>*.do</url-pattern>
  72. </filter-mapping>
  73. <filter-mapping>
  74. <filter-name>encodingFilter</filter-name>
  75. <url-pattern>*.jsp</url-pattern>
  76. </filter-mapping>
  77. <!-- order:1 SHRRequestParamWrapFilter -->
  78. <filter>
  79. <filter-name>SHRRequestParamWrapFilter</filter-name>
  80. <filter-class>com.kingdee.shr.base.syssetting.web.filter.SHRRequestParameterWrapFilter</filter-class>
  81. <init-param>
  82. <param-name>enableSHRRequestParamWrapFilter</param-name>
  83. <param-value>true</param-value>
  84. </init-param>
  85. </filter>
  86. <filter-mapping>
  87. <filter-name>SHRRequestParamWrapFilter</filter-name>
  88. <url-pattern>/*</url-pattern>
  89. </filter-mapping>
  90. <!-- order:2 XSSFilter -->
  91. <filter>
  92. <filter-name>XSSFilter</filter-name>
  93. <filter-class>com.kingdee.shr.base.syssetting.web.filter.XSSFilter</filter-class>
  94. <init-param>
  95. <!--request uipkWhiteList , if request uipk include uipkWhiteList,then ignore filter -->
  96. <param-name>uipkAndHandlerWhiteList</param-name>
  97. <param-value>
  98. com.kingdee.shr.base.syssetting.app.UIView.form,
  99. sourcecompare,
  100. com.kingdee.shr.base.syssetting.app.PrivacyAgreement.form,
  101. com.kingdee.shr.baseconfig.app.DocumentationConfig.form,
  102. com.kingdee.shr.base.syssetting.app.FieldRule.form
  103. </param-value>
  104. </init-param>
  105. </filter>
  106. <filter-mapping>
  107. <filter-name>XSSFilter</filter-name>
  108. <url-pattern>/*</url-pattern>
  109. </filter-mapping>
  110. <!-- order:3 SQLInjectionFilter -->
  111. <filter>
  112. <filter-name>SQLInjectionFilter</filter-name>
  113. <filter-class>com.kingdee.shr.base.syssetting.web.filter.SQLInjectionFilter</filter-class>
  114. <init-param>
  115. <param-name>enableSQLInjectionFilter</param-name>
  116. <!--enableSQLInjectionFilter default value is true,if need turn on,change value is : false -->
  117. <param-value>true</param-value>
  118. </init-param>
  119. <init-param>
  120. <!--request uipkWhiteList , if request uipk include uipkWhiteList,then ignore filter -->
  121. <param-name>uipkWhiteList</param-name>
  122. <param-value>
  123. com.kingdee.shr.dataplatform.app.CustomSQL.form,
  124. com.kingdee.shr.dataplatform.app.DataSetConfig.form,
  125. com.kingdee.shr.base.syssetting.app.UIView.form,
  126. com.kingdee.shr.base.syssetting.app.FieldRange.form,
  127. com.kingdee.shr.base.syssetting.app.ListFilterSolution.form,
  128. com.kingdee.shr.base.syssetting.app.ListSetSolution.form,
  129. shr.report.ReportDefGuidev2.0,
  130. com.kingdee.eas.rpts.ctrlsqldesign.app.KSQLReport.form,
  131. com.kingdee.shr.compensation.app.FormulaFunc.form,
  132. com.kingdee.shr.compensation.app.FormulaTmpTable.form
  133. </param-value>
  134. </init-param>
  135. <init-param>
  136. <!--sql key wrod , if request value include drop or delete .... ,then replace -->
  137. <param-name>sqlKeyWord</param-name>
  138. <param-value>drop,delete,truncate,update,insert,dbo.sysdatabases,
  139. dbo.sysdatabases--,information_schema.columns,table_schema,
  140. xp_cmdshell,group_concat,table_schema,declare,sitename,||,
  141. exec,execute,create,table,grant,use,column_name,union,*,master,;,-,+,//,/,%,#,all_tab_columns,ascii,substring</param-value>
  142. </init-param>
  143. <init-param>
  144. <!--verify parameter list, if request key include permItemId and value contains sql inject style ,then replace -->
  145. <param-name>sqlinjectfilterparams</param-name>
  146. <param-value>permItemId,personId,personID,relatedFieldId,serviceId,rootId,nodeId,billId,orgId,orgid,serviceName,uipk,sorterItems,parameters,sidx,sord,query,staffingId,staffId,uiClass,keyField,nd,objectID,proposerName,attendPeriodId,attendanceGroupID,proposerId,attendPolicyId,orgLongNum,bizManageTypeID,billIdParam,personid,positionId</param-value>
  147. </init-param>
  148. </filter>
  149. <filter-mapping>
  150. <filter-name>SQLInjectionFilter</filter-name>
  151. <url-pattern>/*</url-pattern>
  152. </filter-mapping>
  153. <!-- Light App login filter begin -->
  154. <filter>
  155. <filter-name>Light App Login Filter</filter-name>
  156. <filter-class>com.kingdee.shr.lightapp.filter.LightAppLoginFilter</filter-class>
  157. </filter>
  158. <filter-mapping>
  159. <filter-name>Light App Login Filter</filter-name>
  160. <url-pattern>/*</url-pattern>
  161. </filter-mapping>
  162. <!-- AppScanAttackFilter -->
  163. <filter>
  164. <filter-name>AppScanAttackFilter</filter-name>
  165. <filter-class>com.kingdee.shr.base.syssetting.web.filter.AppScanAttackFilter</filter-class>
  166. <init-param>
  167. <param-name>enableAppScanAttackFilter</param-name>
  168. <param-value>true</param-value>
  169. </init-param>
  170. </filter>
  171. <filter-mapping>
  172. <filter-name>AppScanAttackFilter</filter-name>
  173. <url-pattern>/*</url-pattern>
  174. </filter-mapping>
  175. <!-- order:4 DisableUrlSessionFilter -->
  176. <filter>
  177. <filter-name>DisableUrlSessionFilter</filter-name>
  178. <filter-class>com.kingdee.shr.base.syssetting.web.filter.DisableUrlSessionFilter</filter-class>
  179. <init-param>
  180. <param-name>excludePattern</param-name>
  181. <param-value>
  182. method=print+,method=import+,handler=com.kingdee.shr.base.syssetting.web.handler.ImportInfoHandler,uipk=com.kingdee.shr.report.app.ReportDef.list
  183. </param-value>
  184. </init-param>
  185. </filter>
  186. <filter-mapping>
  187. <filter-name>DisableUrlSessionFilter</filter-name>
  188. <url-pattern>*.do</url-pattern>
  189. </filter-mapping>
  190. <filter-mapping>
  191. <filter-name>DisableUrlSessionFilter</filter-name>
  192. <url-pattern>*.jsp</url-pattern>
  193. </filter-mapping>
  194. <filter>
  195. <filter-name>SHRAuthentiactionFilter</filter-name>
  196. <filter-class>com.kingdee.shr.base.syssetting.web.filter.SHRAuthenticationFilter</filter-class>
  197. <init-param>
  198. <param-name>excludePattern</param-name>
  199. <param-value>
  200. </param-value>
  201. </init-param>
  202. </filter>
  203. <filter-mapping>
  204. <filter-name>SHRAuthentiactionFilter</filter-name>
  205. <url-pattern>*.do</url-pattern>
  206. </filter-mapping>
  207. <filter-mapping>
  208. <filter-name>SHRAuthentiactionFilter</filter-name>
  209. <url-pattern>*.jsp</url-pattern>
  210. </filter-mapping>
  211. <filter-mapping>
  212. <filter-name>SHRAuthentiactionFilter</filter-name>
  213. <url-pattern>*.html</url-pattern>
  214. </filter-mapping>
  215. <filter-mapping>
  216. <filter-name>SHRAuthentiactionFilter</filter-name>
  217. <url-pattern>*.htm</url-pattern>
  218. </filter-mapping>
  219. <filter>
  220. <filter-name>CAS Authentication Filter</filter-name>
  221. <filter-class>
  222. org.springframework.web.filter.DelegatingFilterProxy
  223. </filter-class>
  224. <init-param>
  225. <param-name>targetBeanName</param-name>
  226. <param-value>casAuthenticationFilter</param-value>
  227. </init-param>
  228. </filter>
  229. <filter-mapping>
  230. <filter-name>CAS Authentication Filter</filter-name>
  231. <url-pattern>/*</url-pattern>
  232. </filter-mapping>
  233. <filter>
  234. <filter-name>CAS Validation Filter</filter-name>
  235. <filter-class>
  236. org.springframework.web.filter.DelegatingFilterProxy
  237. </filter-class>
  238. <init-param>
  239. <param-name>targetBeanName</param-name>
  240. <param-value>casTicketValidationFilter</param-value>
  241. </init-param>
  242. </filter>
  243. <filter-mapping>
  244. <filter-name>CAS Validation Filter</filter-name>
  245. <url-pattern>/*</url-pattern>
  246. </filter-mapping>
  247. <filter>
  248. <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
  249. <filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
  250. </filter>
  251. <!--filter>
  252. <filter-name>WafFilter</filter-name>
  253. <filter-class>
  254. com.kingdee.bos.waf.intercepter.ExtensionFilter
  255. </filter-class>
  256. </filter-->
  257. <filter-mapping>
  258. <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
  259. <url-pattern>/*</url-pattern>
  260. </filter-mapping>
  261. <filter>
  262. <filter-name>ContextConstructorFilter</filter-name>
  263. <filter-class>com.kingdee.bos.sso.client.filter.ContextConstructorFilter</filter-class>
  264. </filter>
  265. <filter-mapping>
  266. <filter-name>ContextConstructorFilter</filter-name>
  267. <url-pattern>/*</url-pattern>
  268. </filter-mapping>
  269. <!-- SSO 结束 -->
  270. <!-- 暂时禁用性能监控filter
  271. <filter>
  272. <filter-name>PerfLog Filter</filter-name>
  273. <filter-class>com.kingdee.eas.perflog.app.monitor.http.HttpFilter</filter-class>
  274. </filter>
  275. <filter-mapping>
  276. <filter-name>PerfLog Filter</filter-name>
  277. <url-pattern>*</url-pattern>
  278. </filter-mapping>
  279. -->
  280. <!--filter-mapping>
  281. <filter-name>CAS Single Sign Out Filter</filter-name>
  282. <url-pattern>/*</url-pattern>
  283. </filter-mapping-->
  284. <filter-mapping>
  285. <filter-name>CAS Validation Filter</filter-name>
  286. <url-pattern>/wfdesigner/*</url-pattern>
  287. </filter-mapping><filter-mapping>
  288. <filter-name>CAS Authentication Filter</filter-name>
  289. <url-pattern>/wfdesigner/*</url-pattern>
  290. </filter-mapping>
  291. <!-- <filter-mapping>
  292. <filter-name>WafFilter</filter-name>
  293. <url-pattern>/wfdesigner/*</url-pattern>
  294. </filter-mapping><filter-mapping>
  295. <filter-name>WafFilter</filter-name>
  296. <url-pattern>/messagebroker/*</url-pattern>
  297. </filter-mapping><filter-mapping>
  298. <filter-name>WafFilter</filter-name>
  299. <url-pattern>/processimage/*</url-pattern>
  300. </filter-mapping> -->
  301. <filter-mapping>
  302. <filter-name>CAS Authentication Filter</filter-name>
  303. <url-pattern>/servlet/BillServlet</url-pattern>
  304. </filter-mapping>
  305. <filter-mapping>
  306. <filter-name>CAS Authentication Filter</filter-name>
  307. <url-pattern>/servlet/ListServlet</url-pattern>
  308. </filter-mapping>
  309. <filter-mapping>
  310. <filter-name>CAS Validation Filter</filter-name>
  311. <url-pattern>/servlet/BillServlet</url-pattern>
  312. </filter-mapping>
  313. <filter-mapping>
  314. <filter-name>CAS Validation Filter</filter-name>
  315. <url-pattern>/servlet/ListServlet</url-pattern>
  316. </filter-mapping>
  317. <filter-mapping>
  318. <filter-name>CAS Authentication Filter</filter-name>
  319. <url-pattern>/wf-portal/*</url-pattern>
  320. </filter-mapping>
  321. <filter-mapping>
  322. <filter-name>CAS Validation Filter</filter-name>
  323. <url-pattern>/wf-portal/*</url-pattern>
  324. </filter-mapping>
  325. <filter-mapping>
  326. <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
  327. <url-pattern>/wf-portal/*</url-pattern>
  328. </filter-mapping>
  329. <filter-mapping>
  330. <filter-name>CAS Authentication Filter</filter-name>
  331. <url-pattern>/workflow/*</url-pattern>
  332. </filter-mapping>
  333. <filter-mapping>
  334. <filter-name>CAS Validation Filter</filter-name>
  335. <url-pattern>/workflow/*</url-pattern>
  336. </filter-mapping>
  337. <filter-mapping>
  338. <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
  339. <url-pattern>/workflow/*</url-pattern>
  340. </filter-mapping>
  341. <filter-mapping>
  342. <filter-name>CAS Authentication Filter</filter-name>
  343. <url-pattern>/billdigesttools/*.jsp</url-pattern>
  344. </filter-mapping>
  345. <filter-mapping>
  346. <filter-name>CAS Validation Filter</filter-name>
  347. <url-pattern>/billdigesttools/*.jsp</url-pattern>
  348. </filter-mapping>
  349. <filter-mapping>
  350. <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
  351. <url-pattern>/billdigesttools/*.jsp</url-pattern>
  352. </filter-mapping>
  353. <!--filter-mapping>
  354. <filter-name>WafFilter</filter-name>
  355. <url-pattern>*.jsp</url-pattern>
  356. </filter-mapping-->
  357. <!--cas 3.0 client end-->
  358. <filter>
  359. <filter-name>SHRWeb RPC Filter</filter-name>
  360. <filter-class>com.kingdee.shr.base.syssetting.filter.SHRWebRPCFilter</filter-class>
  361. </filter>
  362. <!--EASWeb RPC Filter-->
  363. <filter-mapping>
  364. <filter-name>SHRWeb RPC Filter</filter-name>
  365. <url-pattern>/*</url-pattern>
  366. </filter-mapping>
  367. <!-- <filter-mapping>
  368. <filter-name>WafFilter</filter-name>
  369. <url-pattern>*.jsf</url-pattern>
  370. </filter-mapping>
  371. <filter-mapping>
  372. <filter-name>WafFilter</filter-name>
  373. <url-pattern>/servlet/BillServlet</url-pattern>
  374. </filter-mapping>
  375. <filter-mapping>
  376. <filter-name>WafFilter</filter-name>
  377. <url-pattern>/servlet/BillEditServlet</url-pattern>
  378. </filter-mapping>
  379. <filter-mapping>
  380. <filter-name>WafFilter</filter-name>
  381. <url-pattern>/servlet/ListServlet</url-pattern>
  382. </filter-mapping>
  383. <filter-mapping>
  384. <filter-name>WafFilter</filter-name>
  385. <url-pattern>/servlet/BillListServlet</url-pattern>
  386. </filter-mapping> -->
  387. <filter>
  388. <filter-name>User Monitor</filter-name>
  389. <filter-class>com.kingdee.eas.hr.base.web.UserMonitorFilter</filter-class>
  390. </filter>
  391. <filter-mapping>
  392. <filter-name>User Monitor</filter-name>
  393. <url-pattern>*.action</url-pattern>
  394. </filter-mapping>
  395. <filter-mapping>
  396. <filter-name>User Monitor</filter-name>
  397. <url-pattern>*.do</url-pattern>
  398. </filter-mapping>
  399. <filter-mapping>
  400. <filter-name>User Monitor</filter-name>
  401. <url-pattern>*.jsp</url-pattern>
  402. </filter-mapping>
  403. <filter-mapping>
  404. <filter-name>User Monitor</filter-name>
  405. <url-pattern>*.html</url-pattern>
  406. </filter-mapping>
  407. <filter>
  408. <filter-name>HR context Filter</filter-name>
  409. <filter-class>com.kingdee.shr.base.filter.HRContextFilter</filter-class>
  410. </filter>
  411. <filter-mapping>
  412. <filter-name>HR context Filter</filter-name>
  413. <url-pattern>*.action</url-pattern>
  414. </filter-mapping>
  415. <filter-mapping>
  416. <filter-name>HR context Filter</filter-name>
  417. <url-pattern>*.do</url-pattern>
  418. </filter-mapping>
  419. <filter-mapping>
  420. <filter-name>HR context Filter</filter-name>
  421. <url-pattern>*.jsp</url-pattern>
  422. </filter-mapping>
  423. <filter-mapping>
  424. <filter-name>HR context Filter</filter-name>
  425. <url-pattern>*.html</url-pattern>
  426. </filter-mapping>
  427. <filter>
  428. <filter-name>Upgrade Monitor</filter-name>
  429. <filter-class>com.kingdee.shr.base.syssetting.filter.UpgradeMonitorFilter</filter-class>
  430. <init-param>
  431. <!-- 升级url白名单,配置在里面的无需拦截-->
  432. <param-name>urlWhiteListed</param-name>
  433. <param-value>
  434. /index.jsp,
  435. /login.do,
  436. /notUpgraded.jsp,
  437. /logout.jsp,
  438. /personSquarePhoto.do,
  439. /serviceMenu.do,
  440. /heartbeat.do,
  441. /shr/msf/service.do,
  442. /promptF7.do,
  443. /appData.do,
  444. /ces.jsp,
  445. /clubService/getUnReadNews.do,
  446. /web_frame/easrpc/login.do,
  447. /web_frame/easrpc/frame.do,
  448. /shr_loginout/logoutAndReleaseResource.do
  449. </param-value>
  450. </init-param>
  451. <init-param>
  452. <!-- 升级uipk白名单,配置在里面的无需拦截-->
  453. <param-name>uipkWhiteListed</param-name>
  454. <param-value>
  455. com.kingdee.eas.hr.mvdt.app.ControlDataMoveProject.form,
  456. shr.org.AdminOrgUnitDataMove_list,
  457. com.kingdee.eas.basedata.org.app.OrgUnitLayerType.F7,
  458. shr.org.AdminOrgUnitDataMove_form,
  459. com.kingdee.shr.shrimport.app.ImportTask.userList
  460. </param-value>
  461. </init-param>
  462. <init-param>
  463. <!-- 升级handler白名单,配置在里面的无需拦截-->
  464. <param-name>handlerWhiteListed</param-name>
  465. <param-value>
  466. com.kingdee.eas.hr.mvdt.web.handler.ControlDataMoveProjectHandler,
  467. com.kingdee.eas.hr.mvdt.web.handler.DataMoveProjectHandler,
  468. com.kingdee.eas.hr.mvdt.web.handler.SHRMvTableListHandler,
  469. com.kingdee.shr.base.syssetting.web.handler.ImportInfoHandler,
  470. com.kingdee.eas.hr.org.web.handler.OrgUnitListHandler,
  471. com.kingdee.eas.hr.org.web.handler.OrgUnitLayerTypeF7Handler,
  472. com.kingdee.shr.hr.mvdt.handler.ControlAdminDataMoveHandler,
  473. com.kingdee.eas.hr.org.web.handler.OrgUnitEditHandler,
  474. com.kingdee.shr.base.syssetting.web.handler.SystemConfigSolutionHandler,
  475. com.kingdee.shr.hr.mvdt.handler.ControlCompensationDataMoveHandler,
  476. com.kingdee.shr.base.syssetting.web.handler.LogJarClassInfoToolsHandler
  477. </param-value>
  478. </init-param>
  479. </filter>
  480. <filter-mapping>
  481. <filter-name>Upgrade Monitor</filter-name>
  482. <url-pattern>*.action</url-pattern>
  483. </filter-mapping>
  484. <filter-mapping>
  485. <filter-name>Upgrade Monitor</filter-name>
  486. <url-pattern>*.do</url-pattern>
  487. </filter-mapping>
  488. <filter-mapping>
  489. <filter-name>Upgrade Monitor</filter-name>
  490. <url-pattern>*.jsp</url-pattern>
  491. </filter-mapping>
  492. <filter-mapping>
  493. <filter-name>Upgrade Monitor</filter-name>
  494. <url-pattern>*.html</url-pattern>
  495. </filter-mapping>
  496. <listener>
  497. <listener-class>
  498. org.springframework.web.context.ContextLoaderListener
  499. </listener-class>
  500. </listener>
  501. <!-- SSO 开始 -->
  502. <listener>
  503. <listener-class>com.kingdee.eas.cp.common.url.service.web.WebSessionListener</listener-class>
  504. </listener>
  505. <!-- <servlet>
  506. <servlet-name>WfProcessImageServlet</servlet-name>
  507. <servlet-class>com.kingdee.bos.workflow.designer.servlet.ProcessImageServlet</servlet-class>
  508. <load-on-startup>2</load-on-startup>
  509. </servlet> -->
  510. <!--servlet>
  511. <servlet-name>FlexMessageBrokerServlet</servlet-name>
  512. <servlet-class>flex.messaging.MessageBrokerServlet</servlet-class>
  513. <init-param>
  514. <param-name>services.configuration.file</param-name>
  515. <param-value>/WEB-INF/flex/services-config.xml</param-value>
  516. </init-param>
  517. <load-on-startup>1</load-on-startup>
  518. </servlet-->
  519. <!--servlet>
  520. <servlet-name>Faces Servlet</servlet-name>
  521. <servlet-class>javax.faces.webapp.FacesServlet</servlet-class>
  522. <load-on-startup>1</load-on-startup>
  523. </servlet-->
  524. <!--servlet>
  525. <servlet-name>ResourceServlet</servlet-name>
  526. <servlet-class>
  527. com.kingdee.bos.web.resource.ResourceServlet
  528. </servlet-class>
  529. <load-on-startup>10</load-on-startup>
  530. </servlet-->
  531. <!--servlet>
  532. <servlet-name>Logout Servlet</servlet-name>
  533. <servlet-class>
  534. com.kingdee.bos.waf.security.Logout
  535. </servlet-class>
  536. </servlet-->
  537. <!-- webApi servlet-->
  538. <servlet>
  539. <servlet-name>OAToSHR</servlet-name>
  540. <servlet-class>com.kingdee.eas.custom.sso.OAToSHR</servlet-class>
  541. </servlet>
  542. <servlet-mapping>
  543. <servlet-name>OAToSHR</servlet-name>
  544. <url-pattern>/api/oAToSHR</url-pattern>
  545. </servlet-mapping>
  546. <!-- webApi servlet-->
  547. <servlet>
  548. <servlet-name>OAToMbos</servlet-name>
  549. <servlet-class>com.kingdee.eas.custom.sso.OAToMBos</servlet-class>
  550. </servlet>
  551. <servlet-mapping>
  552. <servlet-name>OAToMbos</servlet-name>
  553. <url-pattern>/api/oAToMBos</url-pattern>
  554. </servlet-mapping>
  555. <!-- BatchApprove servlet-->
  556. <servlet>
  557. <servlet-name>batchApprove</servlet-name>
  558. <servlet-class>com.kingdee.eas.custom.sso.BatchApprove</servlet-class>
  559. </servlet>
  560. <servlet-mapping>
  561. <servlet-name>batchApprove</servlet-name>
  562. <url-pattern>/api/batchApprove</url-pattern>
  563. </servlet-mapping>
  564. <servlet>
  565. <servlet-name>BuffaloServlet</servlet-name>
  566. <servlet-class>net.buffalo.web.servlet.ApplicationServlet</servlet-class>
  567. <init-param>
  568. <param-name>debug</param-name>
  569. <param-value>true</param-value>
  570. </init-param>
  571. </servlet>
  572. <servlet-mapping>
  573. <servlet-name>BuffaloServlet</servlet-name>
  574. <url-pattern>/BUFFALO/*</url-pattern>
  575. </servlet-mapping>
  576. <!-- <servlet-mapping>
  577. <servlet-name>WfProcessImageServlet</servlet-name>
  578. <url-pattern>/processimage/*</url-pattern>
  579. </servlet-mapping> -->
  580. <!-- <servlet-mapping>
  581. <servlet-name>FlexMessageBrokerServlet</servlet-name>
  582. <url-pattern>/messagebroker/*</url-pattern>
  583. </servlet-mapping> -->
  584. <!--servlet-mapping>
  585. <servlet-name>Faces Servlet</servlet-name>
  586. <url-pattern>*.jsf</url-pattern>
  587. </servlet-mapping-->
  588. <servlet-mapping>
  589. <servlet-name>Logout Servlet</servlet-name>
  590. <url-pattern>/logout</url-pattern>
  591. </servlet-mapping>
  592. <!--servlet-mapping>
  593. <servlet-name>ResourceServlet</servlet-name>
  594. <url-pattern>/_global/*</url-pattern>
  595. </servlet-mapping-->
  596. <mime-mapping>
  597. <extension>mht</extension>
  598. <mime-type>message/rfc822</mime-type>
  599. </mime-mapping>
  600. <!-- pack script -->
  601. <servlet>
  602. <description>This is the servlet needed for cache.type servlet, returns the packed resources</description>
  603. <display-name>PackServlet</display-name>
  604. <servlet-name>PackServlet</servlet-name>
  605. <servlet-class>net.sf.packtag.servlet.PackServlet</servlet-class>
  606. </servlet>
  607. <servlet-mapping>
  608. <servlet-name>PackServlet</servlet-name>
  609. <url-pattern>styles/combined*.css</url-pattern>
  610. </servlet-mapping>
  611. <servlet-mapping>
  612. <servlet-name>PackServlet</servlet-name>
  613. <url-pattern>combined*.js</url-pattern>
  614. </servlet-mapping>
  615. <servlet-mapping>
  616. <servlet-name>PackServlet</servlet-name>
  617. <url-pattern>styles/external*.css</url-pattern>
  618. </servlet-mapping>
  619. <servlet-mapping>
  620. <servlet-name>PackServlet</servlet-name>
  621. <url-pattern>external*.js</url-pattern>
  622. </servlet-mapping>
  623. <context-param>
  624. <param-name>
  625. com.kingdee.bos.webframework.SCRIPT_DEBUG
  626. </param-name>
  627. <param-value>false</param-value>
  628. </context-param>
  629. <context-param>
  630. <param-name>
  631. com.kingdee.bos.webframework.SUPPORT_MULTILANG
  632. </param-name>
  633. <param-value>false</param-value>
  634. </context-param>
  635. <context-param>
  636. <param-name>
  637. com.kingdee.bos.webframework.LANGS
  638. </param-name>
  639. <param-value>L1,L2,L3</param-value>
  640. </context-param>
  641. <!--context-param>
  642. <param-name>webAppRootKey</param-name>
  643. <param-value>easweb.root</param-value>
  644. </context-param-->
  645. <!--listener>
  646. <listener-class>
  647. org.springframework.web.util.WebAppRootListener
  648. </listener-class>
  649. </listener-->
  650. <filter>
  651. <filter-name>WafHttpRequestFilter</filter-name>
  652. <filter-class>com.kingdee.shr.base.syssetting.filter.ShrHttpRequestFilter</filter-class>
  653. <init-param>
  654. <param-name>CONVERSATION_SUPPORT</param-name>
  655. <param-value>true</param-value>
  656. </init-param>
  657. <init-param>
  658. <param-name>RESPONSE_BUFFER_SIZE</param-name>
  659. <param-value>5000</param-value>
  660. </init-param>
  661. </filter>
  662. <filter-mapping>
  663. <filter-name>CAS Authentication Filter</filter-name>
  664. <url-pattern>*.do</url-pattern>
  665. </filter-mapping>
  666. <filter-mapping>
  667. <filter-name>CAS Validation Filter</filter-name>
  668. <url-pattern>*.do</url-pattern>
  669. </filter-mapping>
  670. <filter-mapping>
  671. <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
  672. <url-pattern>*.do</url-pattern>
  673. </filter-mapping>
  674. <filter>
  675. <filter-name>Waf2ContextFilter</filter-name>
  676. <filter-class>
  677. com.kingdee.shr.base.syssetting.filter.SHRContextFilter
  678. </filter-class>
  679. </filter>
  680. <filter-mapping>
  681. <filter-name>Waf2ContextFilter</filter-name>
  682. <url-pattern>*.do</url-pattern>
  683. </filter-mapping>
  684. <filter-mapping>
  685. <filter-name>WafHttpRequestFilter</filter-name>
  686. <url-pattern>*.do</url-pattern>
  687. </filter-mapping>
  688. <!-- order: SHRRequestWorkPlatformFilter -->
  689. <filter>
  690. <filter-name>SHRRequestWorkPlatformFilter</filter-name>
  691. <filter-class>com.kingdee.shr.base.syssetting.web.filter.SHRRequestWorkPlatformFilter</filter-class>
  692. </filter>
  693. <filter-mapping>
  694. <filter-name>SHRRequestWorkPlatformFilter</filter-name>
  695. <url-pattern>*.html</url-pattern>
  696. </filter-mapping>
  697. <servlet>
  698. <servlet-name>MVCServlet</servlet-name>
  699. <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
  700. <init-param>
  701. <param-name>contextConfigLocation</param-name>
  702. <param-value>/WEB-INF/properties/applicationContext.xml</param-value>
  703. </init-param>
  704. <load-on-startup>1</load-on-startup>
  705. </servlet>
  706. <servlet-mapping>
  707. <servlet-name>MVCServlet</servlet-name>
  708. <url-pattern>*.do</url-pattern>
  709. </servlet-mapping>
  710. <!-- 500错误页面 -->
  711. <error-page>
  712. <error-code>500</error-code>
  713. <location>/500.jsp</location>
  714. </error-page>
  715. <!-- 404错误页面 -->
  716. <error-page>
  717. <error-code>404</error-code>
  718. <location>/404.jsp</location>
  719. </error-page>
  720. <listener>
  721. <listener-class>com.kingdee.shr.base.syssetting.web.listener.SHRAppListener</listener-class>
  722. </listener>
  723. <listener>
  724. <listener-class>com.kingdee.shr.base.syssetting.web.listener.SHRSessionListener</listener-class>
  725. </listener>
  726. <welcome-file-list>
  727. <welcome-file>index.jsp</welcome-file>
  728. </welcome-file-list>
  729. <mime-mapping>
  730. <extension>docx</extension>
  731. <mime-type>application/vnd.openxmlformats-officedocument.wordprocessingml.document</mime-type>
  732. </mime-mapping>
  733. <mime-mapping>
  734. <extension>xlsx</extension>
  735. <mime-type>application/vnd.openxmlformats-officedocument.spreadsheetml.sheet</mime-type>
  736. </mime-mapping>
  737. <mime-mapping>
  738. <extension>pptx</extension>
  739. <mime-type>application/vnd.openxmlformats-officedocument.presentationml.presentation</mime-type>
  740. </mime-mapping>
  741. </web-app>