[
https://issues.apache.org/jira/browse/SHIRO-839?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17412729#comment-17412729
]
Brian Demers commented on SHIRO-839:
------------------------------------
How are you planning on managing the user's authentication state without
cookies?
> Access to current subject in security manager via thread local
> --------------------------------------------------------------
>
> Key: SHIRO-839
> URL: https://issues.apache.org/jira/browse/SHIRO-839
> Project: Shiro
> Issue Type: Improvement
> Components: Authorization (access control) , Session Management,
> Subject
> Reporter: Tuomas Kiviaho
> Priority: Major
>
> I'm trying gain subject based cookie control in session manager but it would
> be extremely clunky since I don't have access to subject context at the time
> cookie support is determined.
> Would it be possible to surround at least the SessionManager related methods
> (and perhapsĀ Authorizer as well) of DelegatingSubject with Subject::execute.
> This way there would not be API changes needed.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
