Hi Les and Shiro fans,
I specified my own cacheManager in my ShiroFilter in my tomcat web.xml file, but it doesn't seem to get called. I have a VonageDistributedSessionCacheManager class, and I can see its constructor gets called, but its get() and put() methods are never being called. This looks like it could be the same problem I reported here: https://issues.apache.org/jira/browse/SHIRO-85 That bug is listed as "Fixed", but looking at the source file: core/src/main/java/org/apache/shiro/config/ReflectionBuilder.java I see that the buiildObjects() method still has the problem. Andy Below is what I have in my ShiroFilter. I also notice that when I uncomment this line: #securityManager.sessionDAO = $sessionDAO ...I get an error, which seems to indicate that this line is being processed before the line where sessionDAO is being set. ----------------------------------------------------- [main] sessionDAO = org.apache.shiro.session.mgt.eis.MemorySessionDAO # pull in vonage centralized authentication: realmA = com.vonage.auth.VonageAuthenticationRealm securityManager = org.apache.shiro.web.DefaultWebSecurityManager #securityManager.sessionDAO = $sessionDAO #sessionManager = org.apache.shiro.web.session.DefaultWebSessionManager #securityManager.sessionManager = $sessionManager #securityManager.sessionMode = native #securityManager.realm = $realmA cacheManager = com.vonage.auth.VonageDistributedSessionCacheManager securityManager.cacheManager = $cacheManager sessionDAO.cacheManager = $cacheManager realmA.cacheManager = $cacheManager [filters] authc.loginUrl = /login.jsp authc = com.vonage.auth.VonageFormAuthenticationFilter # Perform authentication on all webapps [urls] # allow anyone to view images (including login.jsp) /images/** = anon
