Divyanshgarg commented on issue #1028: URL: https://github.com/apache/shiro/issues/1028#issuecomment-1667291605
> post your `shiro.ini` also? It looks like somet Thanks for responding. Please refer to below shiro.ini. I will try Jarviz tool and share my findings here. `[main] #fmconvergeRealm=com.finmechanics.fmconverge.security.ShiroRealm fmconvergeRealm=com.finmechanics.fmconverge.security.ShiroEntityAwareRealm fmAjaxFilter=com.finmechanics.fmcom.crypto.ShiroAjaxAuthenticator fmAuthListener=com.finmechanics.fmconverge.security.FmShiroAuthListener #fmconvergeRealm=com.finmechanics.fmconverge.security.FmcApacheLdapRealm #sha256Matcher = org.apache.shiro.authc.credential.Sha256CredentialsMatcher sha256Matcher = org.apache.shiro.authc.credential.SimpleCredentialsMatcher #sha256Matcher.storedCredentialsHexEncoded = false #sha256Matcher.hashIterations = 1024 fmconvergeRealm.credentialsMatcher = $sha256Matcher securityManager.realms = $fmconvergeRealm sessionManager = org.apache.shiro.web.session.mgt.DefaultWebSessionManager #securityManager.sessionMode=native # Use the configured native session manager: securityManager.sessionManager = $sessionManager # session timeout sessionManager.globalSessionTimeout = 18000000 securityManager.authenticator.authenticationListeners=$fmAuthListener shiro.loginUrl = /login.jsp authc.successUrl = /index.jsp logout.redirectUrl = /logout.jsp sessionIdGenerator=com.finmechanics.fmcom.crypto.JavaUuidAndJvmRouteSessionIdGenerator cookie = org.apache.shiro.web.servlet.SimpleCookie cookie.name = FMCONVERGE cookie.path = /fmconverge securityManager.sessionManager.sessionIdCookie = $cookie securityManager.sessionManager.sessionIdCookie.secure = false securityManager.sessionManager.sessionDAO.sessionIdGenerator = $sessionIdGenerator sessionManager.sessionIdUrlRewritingEnabled=false [urls] # The /login.jsp is not restricted to authenticated users (otherwise no one could log in!), but # the 'authc' filter must still be specified for it so it can process that url's # login submissions. It is 'smart' enough to allow those requests through as specified by the # shiro.loginUrl above. /login.jsp = authc /logout = logout /logout.jsp = anon /css/** = anon /js/** = anon /extjs/** = anon /dealmakerjs/** = anon /javascripts/** = anon /fonts/** = anon /favicon.ico = anon /error.jsp = anon /images/** = anon /services/** = anon /dwr/call/** = fmAjaxFilter /atmospherePushServlet/** = fmAjaxFilter /** = authc ` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
