shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Brian Demers (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (SHIRO-591) Basic Auth Filter permissive mode does NOT work
Date Wed, 25 Oct 2017 13:53:00 GMT

    [ https://issues.apache.org/jira/browse/SHIRO-591?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16218659#comment-16218659
] 

Brian Demers commented on SHIRO-591:
------------------------------------

[~marcode]  even if the header is present?

> Basic Auth Filter permissive mode does NOT work
> -----------------------------------------------
>
>                 Key: SHIRO-591
>                 URL: https://issues.apache.org/jira/browse/SHIRO-591
>             Project: Shiro
>          Issue Type: Bug
>          Components: Web
>    Affects Versions: 1.3.0, 1.3.1, 1.3.2
>            Reporter: Brian Demers
>              Labels: regresion
>             Fix For: 1.4.0-RC2
>
>
> The fix for SHIRO-200 assumed all filter options were http methods, for example:
> {authcBasic[POST, GET]}
> However, the 'permissive' option is also valid, which instructs the filter to check for
authentication, but NOT require it:
> {authcBasic[permissive]}
> Or the two combine in something like:
> authcBasic[permissive,POST, GET]



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message