Hi, We are successfully using the DefaultWebSecurityManager in our custom app server (embedding jetty) to handle user web requests. Now we also have a proprietary "non-web" service running inside the JVM in which threads should also be executed in a Shiro context, typically for "automated agent" shiro users and totally unrelated to any web sessions.
What are the best practices for mixing two scenarios like this in a single JVM where isolation with ClassLoaders is not an option? Can the DefaultWebSecurityManager be used also in the non-web threads, or do we need another solution? Any help much appreciated. -- View this message in context: http://shiro-user.582556.n2.nabble.com/Mixing-web-contexts-and-non-web-contexts-in-same-JVM-tp6238960p6238960.html Sent from the Shiro User mailing list archive at Nabble.com.
