have you configured authc.loginUrl = foo? The filter needs to know what the login url is so that it can allow login requests through, otherwise it will block all non-authenticated requests.
You can set a debugger breakpoint in the PassThruAuthenticationFilter class in the onAccessDenied method to see what the request looks like (its path) and see what happens when isLoginRequest executes. As you can see, if it 'isLoginRequest', the view will be shown, otherwise, a redirect to the login page will occur. HTH, -- Les Hazlewood Founder, Katasoft, Inc. Application Security Products & Professional Apache Shiro Support and Training: http://www.katasoft.com On Tue, Oct 5, 2010 at 1:58 PM, pkerrigan <[email protected]> wrote: > > Actually I was using the LoginUser servlet because I derived my test app from > http://www.brucephillips.name/blog/index.cfm/2009/4/5/An-Introduction-to-Ki-formerly-JSecurity--A-Beginners--Tutorial-Part-2, > as listed on the Community->Articles page. However I do in fact need custom > logging, and I have configured the PassThru filter. > > However it doesn't change anything, if I use /** = authc then the > authentication no longer works. > > > ----- > regards, > Philip Kerrigan > -- > View this message in context: > http://shiro-user.582556.n2.nabble.com/Using-Shiro-with-Icefaces-tp5600653p5604863.html > Sent from the Shiro User mailing list archive at Nabble.com. >
