Return-Path: X-Original-To: apmail-shiro-dev-archive@www.apache.org Delivered-To: apmail-shiro-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 86D8D763F for ; Sat, 13 Aug 2011 13:31:50 +0000 (UTC) Received: (qmail 79379 invoked by uid 500); 13 Aug 2011 13:31:50 -0000 Delivered-To: apmail-shiro-dev-archive@shiro.apache.org Received: (qmail 79210 invoked by uid 500); 13 Aug 2011 13:31:49 -0000 Mailing-List: contact dev-help@shiro.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@shiro.apache.org Delivered-To: mailing list dev@shiro.apache.org Received: (qmail 79195 invoked by uid 99); 13 Aug 2011 13:31:48 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 13 Aug 2011 13:31:48 +0000 X-ASF-Spam-Status: No, hits=-2000.8 required=5.0 tests=ALL_TRUSTED,RP_MATCHES_RCVD X-Spam-Check-By: apache.org Received: from [140.211.11.116] (HELO hel.zones.apache.org) (140.211.11.116) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 13 Aug 2011 13:31:47 +0000 Received: from hel.zones.apache.org (hel.zones.apache.org [140.211.11.116]) by hel.zones.apache.org (Postfix) with ESMTP id 35CFCBB677 for ; Sat, 13 Aug 2011 13:31:27 +0000 (UTC) Date: Sat, 13 Aug 2011 13:31:27 +0000 (UTC) From: "Jared Bunting (JIRA)" To: dev@shiro.apache.org Message-ID: <1204990246.35921.1313242287217.JavaMail.tomcat@hel.zones.apache.org> In-Reply-To: <1152578516.62915.1303017665870.JavaMail.tomcat@hel.zones.apache.org> Subject: [jira] [Commented] (SHIRO-283) Add ability to support basic auth and form authentication simultaneously MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/SHIRO-283?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13084613#comment-13084613 ] Jared Bunting commented on SHIRO-283: ------------------------------------- I am committing a fix that allows: authc[permissive] and authcBasic[permissive]. This will allow us to, on a filterchain level, not require login but use these filters simply to allow login. In addition, this will catch an "UnauthenticatedException" and perform the appropriate login request action (redirect to page or send challenge response). > Add ability to support basic auth and form authentication simultaneously > ------------------------------------------------------------------------ > > Key: SHIRO-283 > URL: https://issues.apache.org/jira/browse/SHIRO-283 > Project: Shiro > Issue Type: Bug > Reporter: Dan Diephouse > Attachments: permissive-authenticating2.patch > > > Currently, it's impossible to require either form authentication or basic authentication. I need to support both since we want the former for the users using a browser and the later for REST. At a config level, I don't really care which one is used, I just want to know they're authenticated. -- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira