camel-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ashwin Karpe <>
Subject Re: How can Shiro be used with camel to limit access to a route?
Date Wed, 29 Feb 2012 16:06:17 GMT

As a quick follow-up to my earlier post, this is how the Shiro component
works (Check out the tests in

In Camel Route

Note MyAuthZPolicy reads the ShiroConfiguration.ini file to figure out the
auth/authz rules to apply when messages/exchanges are received.

In Client sending an exchange to Camel Route Consumer XXX

a> First, Create a ShiroSecurityToken...
b> Inject the token into an Exchange along with the message being sent to
the endpoint. This token is matched against the configuration to figure out
authentication and authorization to access the route or route segments. Note
that you can have multiple policies on different route segments (in case of
choices in DSL) and the permission sets & token sent dictate the messages
continuing forward on a route segment.
c> Send the token to the consumer.

In any case, the unit tests attached in the link above should help greatly
in figuring out how to use the shire component and any lingering questions
you have.

In any case, if you run into questions/issues, please post a follow-on



Ashwin Karpe
Apache Camel Committer & Sr Principal Consultant
FUSESource (a Progress Software Corporation subsidiary) 

View this message in context:
Sent from the Camel - Users mailing list archive at

View raw message