I think I may have found the issue. Working on fixing it. I think I need to update the blob (session) for user's row in my RDBMS right after successful login.
Debug tells me that Shiro is doing SecurityUtils.getSubject().isAuthenticated() check for later readSession/update() (to load my app page). However, since my session blob is not updated at the authentication (isAuthenticated() returns false) it redirects to login page. If can update the blob, more than likely, my issue will be resolved. So I would like to know what would be the correct way to convert SecurityUtils.getSubject().getSession() so I can save it Serializable in DB (as blob). I've already tried: Session ss = (Session) SecurityUtils.getSubject().getSession(); updateBlobfortheUser((Serializable) ss); But I get Exception from org.apache.shiro.subject.DelegatingSubject. -- View this message in context: http://shiro-user.582556.n2.nabble.com/Unable-to-implement-create-read-update-session-tp5183219p5188009.html Sent from the Shiro User mailing list archive at Nabble.com.
