2062. EPMO Open Source Coordination Office Redaction File Detail Report

Produced by Araxis Merge on 10/5/2018 9:05:35 PM Central Daylight Time. See www.araxis.com for information about Merge. This report uses XHTML and CSS2, and is best viewed with a modern standards-compliant browser. For optimum results when printing this report, use landscape orientation and enable printing of background images and colours in your browser.

2062.1 Files compared

#	Location	File	Last Modified
1	MHEDP3_VAOS_VATS_SM_Sept2018.zip\SM 2.4.0\scheduling-manager-resources-2.4.0.zip\SchedulingManagerService\src\main\resources\META-INF\cocoon\spring	scheduling-manager-security.xml	Thu Jul 19 20:06:36 2018 UTC
2	MHEDP3_VAOS_VATS_SM_Sept2018.zip\SM 2.4.0\scheduling-manager-resources-2.4.0.zip\SchedulingManagerService\src\main\resources\META-INF\cocoon\spring	scheduling-manager-security.xml	Fri Oct 5 16:55:26 2018 UTC

2062.2 Comparison summary

Description	Between Files 1 and 2
Description	Text Blocks	Lines
Unchanged	2	552
Changed	1	2
Inserted	0	0
Removed	0	0

2062.3 Comparison options

Whitespace
Character case	Differences in character case are significant
Line endings	Differences in line endings (`CR` and `LF` characters) are ignored
CR/LF characters	Not shown in the comparison detail

2062.4 Active regular expressions

No regular expressions were active.

2062.5 Comparison detail

	1	<?xml
	2	version="1 .0"
	3	encoding=" UTF-8"
	4	?>
	5	<beans
	6	xmlns="htt p://www.sp ringframew ork.org/sc hema/beans "
	7
	8	xmlns:xsi= "http://ww w.w3.org/2 001/XMLSch ema-instan ce"
	9
	10	xmlns:secu rity="http ://www.spr ingframewo rk.org/sch ema/securi ty"
	11
	12	xmlns:oaut h="http:// www.spring framework. org/schema /security/ oauth2"
	13
	14	xsi:schema Location=" http://www .springfra mework.org /schema/be ans http://w ww.springf ramework.o rg/schema/ beans/spri ng-beans-3 .0.xsd
	15	htt p://www.sp ringframew ork.org/sc hema/secur ity http ://www.spr ingframewo rk.org/sch ema/securi ty/spring- security.x sd
	16	htt p://www.sp ringframew ork.org/sc hema/secur ity/oauth2 ht tp://www.s pringframe work.org/s chema/secu rity/sprin g-security -oauth2-1. 0.xsd"
	17	>
	18
	19
	20
	21	<security: http
	22	pattern="/ oauth/**"
	23	security=" none"
	24	/>
	25
	26
	27	<security: http
	28	pattern="/ rest/**"
	29	entry-poin t-ref="for biddenEntr yPoint"
	30	access-dec ision-mana ger-ref="s ecureAcces sDecisionM anager"
	31
	32	use-expres sions="fal se"
	33	>
	34
	35	<security: intercept- url
	36	pattern="/ rest/publi c/**"
	37	access="RO LE_ANONYMO US"
	38	/>
	39
	40	<security: intercept- url
	41	pattern="/ rest/sched uling-serv ice/**"
	42	access="RO LE_STAFF, ROLE_MHP_U SER"
	43	/>
	44
	45	<security: intercept- url
	46	pattern="/ rest/appoi ntment-ser vice/**"
	47	access="RO LE_STAFF, STAFF_FACI LITY"
	48	/>
	49
	50	<security: intercept- url
	51	pattern="/ rest/clini cal-servic e/**"
	52	access="RO LE_STAFF, STAFF_FACI LITY"
	53	/>
	54
	55	<security: intercept- url
	56	pattern="/ rest/**"
	57	access="RO LE_STAFF"
	58	/>
	59
	60	<security: custom-fil ter
	61	ref="token Verificati onFilter"
	62	after="SEC URITY_CONT EXT_FILTER "
	63	/>
	64
	65	<security: custom-fil ter
	66	ref="resou rceServerF ilter"
	67	before="PR E_AUTH_FIL TER"
	68	/>
	69
	70	<security: anonymous />
	71
	72	<security: csrf
	73	disabled=" true"
	74	/>
	75
	76	</security :http>
	77
	78
	79	<security: http
	80	access-dec ision-mana ger-ref="s ecureAcces sDecisionM anager"
	81	entry-poin t-ref="for biddenEntr yPoint"
	82
	83	use-expres sions="fal se"
	84	>
	85
	86	<security: intercept- url
	87	pattern="/ css/**"
	88	access="RO LE_ANONYMO US"
	89	/>
	90
	91	<security: intercept- url
	92	pattern="/ fonts/**"
	93	access="RO LE_ANONYMO US"
	94	/>
	95
	96	<security: intercept- url
	97	pattern="/ js/**"
	98	access="RO LE_ANONYMO US"
	99	/>
	100
	101	<security: intercept- url
	102	pattern="/ resources/ **"
	103	access="RO LE_ANONYMO US"
	104	/>
	105
	106	<security: intercept- url
	107	pattern="/ html/templ ates/**"
	108	access="RO LE_ANONYMO US"
	109	/>
	110
	111	<security: intercept- url
	112	pattern="/ img/**"
	113	access="RO LE_ANONYMO US"
	114	/>
	115
	116	<security: intercept- url
	117	pattern="/ name"
	118	access="RO LE_ANONYMO US"
	119	/>
	120
	121	<security: intercept- url
	122	pattern="/ favicon.ic o"
	123	access="RO LE_ANONYMO US"
	124	/>
	125
	126	<security: intercept- url
	127	pattern="/ launchpad/ **"
	128	access="RO LE_ANONYMO US"
	129	/>
	130
	131	<security: intercept- url
	132	pattern="/ staff-user -disclaime r/**"
	133	access="RO LE_ANONYMO US"
	134	/>
	135
	136	<security: intercept- url
	137	pattern="/ index.html "
	138	access="RO LE_ANONYMO US"
	139	/>
	140
	141	<security: intercept- url
	142	pattern="/ manifest.h tml"
	143	access="RO LE_ANONYMO US"
	144	/>
	145
	146	<security: intercept- url
	147	pattern="/ newbrowser .html"
	148	access="RO LE_ANONYMO US"
	149	/>
	150
	151	<security: intercept- url
	152	pattern="/ test/**"
	153	access="RO LE_ANONYMO US"
	154	/>
	155
	156	<security: intercept- url
	157	pattern="/ **"
	158	access="RO LE_MHP_USE R"
	159	/>
	160
	161	<security: anonymous />
	162
	163	<security: custom-fil ter
	164	ref="resou rceServerF ilter"
	165	after="PRE _AUTH_FILT ER"
	166	/>
	167
	168	<security: csrf
	169	disabled=" true"
	170	/>
	171
	172	</security :http>
	173
	174
	175	<security: authentica tion-manag er>
	176
	177	<security: authentica tion-provi der
	178	user-servi ce-ref="us erService"
	179	>
	180
	181	</security :authentic ation-prov ider>
	182
	183	</security :authentic ation-mana ger>
	184
	185
	186	<security: user-servi ce
	187	id="userSe rvice"
	188	>
	189
	190	<security: user
	191	name="user .none"
	192	VsID
	193	authoritie s="ROLE_NO NE"
	194	/>
	195
	196	</security :user-serv ice>
	197
	198
	199	<bean
	200	id="forbid denEntryPo int"
	201	class="org .springfra mework.sec urity.web. authentica tion.Http4 03Forbidde nEntryPoin t"
	202	/>
	203
	204
	205	<!-- Acces s Decision Manager f or restric ted specif ic url's -->
	206
	207	<bean
	208	id="secure AccessDeci sionManage r"
	209	class="org .springfra mework.sec urity.acce ss.vote.Un animousBas ed"
	210	xmlns="htt p://www.sp ringframew ork.org/sc hema/beans "
	211	>
	212
	213	<construct or-arg>
	214
	215	<list>
	216
	217	<bean
	218	class="org .springfra mework.sec urity.oaut h2.provide r.vote.Sco peVoter"
	219	/>
	220
	221	<bean
	222	class="org .springfra mework.sec urity.acce ss.vote.Ro leVoter"
	223	/>
	224
	225	<bean
	226	class="org .springfra mework.sec urity.acce ss.vote.Au thenticate dVoter"
	227	/>
	228
	229	<bean
	230	class="org .springfra mework.sec urity.web. access.exp ression.We bExpressio nVoter"
	231	/>
	232
	233	<bean
	234	class="com .agilex.he althcare.s chedulingm anager.sec urity.Staf fUserDiscl aimerVoter "
	235	/>
	236
	237	<bean
	238	class="com .agilex.he althcare.s chedulingm anager.sec urity.Staf fFacilityV oter"
	239	/>
	240
	241	</list>
	242
	243	</construc tor-arg>
	244
	245	</bean>
	246
	247
	248	<bean
	249	id="tokenS ervices"
	250	class="com .agilex.he althcare.m obilehealt hplatform. security.H ATokenVali dation"
	251	>
	252
	253	<construct or-arg
	254	value="${o auth.valid ateTokenUr i}"
	255	/>
	256
	257	</bean>
	258
	259
	260	<oauth:res ource-serv er
	261	id="resour ceServerFi lter"
	262	resource-i d="mhp"
	263	token-serv ices-ref=" tokenServi ces"
	264	/>
	265
	266
	267	<bean
	268	id="tokenV erificatio nFilter"
	269	class="com .agilex.he althcare.m obilehealt hplatform. oauth.Heal thAdapterO auth2Verif icationFil ter"
	270	/>
	271
	272
	273
	274	<oauth:exp ression-ha ndler
	275	id="oauthE xpressionH andler"
	276	/>
	277	</beans>