Stack Overflow
Stack Overflow

Questions tagged [shiro]

Apache Shiro is a Java security framework that performs authentication, authorization, cryptography, and session management.

Apache Shiro is a Java security framework that performs authentication, authorization, cryptography, and session management. Shiro's API provides mechanisms to secure a variety of application types, including mobile software, web apps, and enterprise systems.

Shiro can be configured using .ini files, programmatic setup, or a combination of both. For more information see:

1252 questions
3
votes
1 answer

How do we configure the grails shiro plugin v1.1.3?

I'm finding it very difficult in discovering the correct method to configure my app to work with the plug, I am using grails 1.3.6 and the Shiro plugin 1.1.3 I've setup my application according the quick-start guide on the plugin docs site but when…
David Brown
  • 3,021
  • 3
  • 26
  • 46
3
votes
0 answers

User is not authorized to create topic://ActiveMQ.Advisory.Connection

I'm trying to implement LDAP based authentication and authorization in ActiveMQ. The LDAP part is done with ApacheDS 2.0. (Structure taken from http://tmielke.blogspot.com/2011/12/activemq-ldap-based-authentication-and.html - unfortunately the…
Burkhard
  • 14,596
  • 22
  • 87
  • 108
3
votes
0 answers

Implementing Poor Man's SSO in Apache Shiro

Good day. I have a scenario where we have multiple web applications running on the same server and we would like one login to serve all applications. Currently, if you switch applications, you need to be re-authenticated. Try as I may, I can not…
Sam Donato
  • 471
  • 6
  • 12
3
votes
1 answer

How to get roles from principal in Apache Shiro?

I am a bit stuck here. Using a very simple Shiro configuration with jdbcRealm: [main] cacheManager = org.apache.shiro.cache.MemoryConstrainedCacheManager securityManager.cacheManager = $cacheManager # Create JDBC realm. jdbcRealm =…
Sergey Kryazhev
  • 31
  • 5
3
votes
1 answer

Using apache Shiro with Spring MVC non xml project

I have a project in which i am using Spring mvc 4 and i need to include there apache shiro security. I've tried to search over the web for a solution for my problem but didn't managed to fins something. Although there is a guide at Shiro's web site,…
Fima Taf
  • 929
  • 9
  • 22
3
votes
1 answer

Unable to load class named com.mysql.jdbc.jdbc2.optional.MysqlDataSource

I'm trying to set up a simple web application that uses Spark and Apache shiro (for authentication and authorization). I want authentication to happen from MySQL database, but I get a ClassNotFoundException that it could not be found. This is my…
Minas Mina
  • 2,058
  • 3
  • 21
  • 35
3
votes
1 answer

Zeppelin LDAP authentication

I am trying to enable LDAP authentication for Zeppelin. The configuration in shiro.ini looks like this : ldapRealm = org.apache.zeppelin.server.LdapGroupRealm ldapRealm.contextFactory.environment[ldap.searchBase] =…
user3600073
  • 1,773
  • 3
  • 18
  • 21
3
votes
1 answer

How to implement JWT token based authentication mechanism with Apache Shiro?

I have a web application in which Authorization is handled by Apache Shiro. Now we need to convert it to restful service and need to add an authentication mechanism . I am looking for a possibility to keep Shiro itself for authorization, so that…
t10011
  • 127
  • 1
  • 14
3
votes
4 answers

How to point to tomee.xml connection pool from shiro.ini

I configured a connection pool in tomme.xml. So I presume I should not to configure another connection pool in shiro.ini. Instead I can simply point to the connection pool in tomme.xml from shiro.ini. How should I do this? Here is tomee.xml…
john
  • 647
  • 5
  • 23
  • 53
3
votes
0 answers

Get list of all logged users from Apache Shiro

How I can get all logged in users as a list in Apache Shiro? Can you give me some example?
Peter Penzov
  • 1,126
  • 134
  • 430
  • 808
3
votes
0 answers

How can I get all active sessions with Apache Shiro ehcache-terracotta?

In my maven application, I want to provide that if a user log in a new account, another account that already open will be log out. I am using Apache shiro, ehcache and terracotta for this. I want to get all active sessions to check whether that user…
barnabas
  • 43
  • 5
3
votes
1 answer

Vertx shiro auth from a database

Here I found a simple vertx project that uses apache-shiro for auth. Here the user informations are stored inside src/main/resources/vertx-users.properties file like this: user.tim =…
din_oops
  • 698
  • 1
  • 9
  • 27
3
votes
2 answers

When does the method doGetAuthorizationInfo get called in Shiro?

I'm really confused about this. Sometimes it runs, sometimes not. Can someone provide insight into the conditions under which doGetAuthorizationInfo will be called? Thanks
J John
  • 299
  • 1
  • 3
  • 15
3
votes
2 answers

How to safely change the session cookie DOMAIN or name in production?

We recently realized that our session cookie is being written out to the fully qualified domain name of our site, www.myapp.com, for example: MYAPPCOOKIE: 79D5DB83..., domain: www.myapp.com We want to switch this to being a cookie that can be…
Brad Parks
  • 66,836
  • 64
  • 257
  • 336
3
votes
0 answers

Need help configuring Apache Shiro for authentication separation (multiple REST APIs)

I am building a web application using an AngularJS front-end and a Spring Boot REST back-end (they are running on separate servers i.e. port 3000 and port 8443). The back-end is supposed to connect to multiple external services (with separate…
tatones
  • 81
  • 4
1 2 3
83 84