shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Les Hazlewood <>
Subject Re: Shiro and Stateless Applications
Date Fri, 01 Jul 2011 05:58:48 GMT
Note to all following this thread:

I've just updated the codebase to provide out-of-the-box web support
for this via a 'noSession' filter added to the default filters pool.
It can be used in filter chains, for example

/rest/** = noSession, authcBasic

The 'noSession' filter will prevent both Shiro and application
developers from creating a new session for that particular filter
chain.  Please see the last few comments on for more details.

This should provide an out-of-the-box solution for anyone doing REST
or SOAP so they don't have to implement a web-specific
SessionStorageEvaluator themselves.

Feedback welcome.


Les Hazlewood
CTO, Katasoft | | 888.391.5282
katasoft blog:
personal blog:

View raw message