copy paste from shiro.ini
[main]
myRealmCredentialsMatcher =
org.apache.shiro.authc.credential.SimpleCredentialsMatcher
myRealm =
my.package.security.shiro.MyRealm
myRealm.credentialsMatcher = $dropchopRealmCredentialsMatcher
myRealm impl
@Override
protected AuthenticationInfo doGetAuthenticationInfo(final
AuthenticationToken theToken) {
UsernamePasswordToken upToken = (UsernamePasswordToken)
theToken;
SecurityController securityController =
controllerFactory.getController(SecurityController.class); //!!!!!! MY
CUSTOM DAO TO LOAD USERS FROM DATABASE !!!!!!
Principal user = null;
try {
user =
securityController.loadUserByLoginName(upToken.getUsername());
} catch (InvalidDataException idEx) {
throw new AuthenticationException(idEx);
} catch (ResourceException rEx) {
throw new AuthenticationException(rEx);
}
if (user == null) {
throw new AuthenticationException("Login name [" +
upToken.getUsername()
+ "] not found!");
}
log.info("Found user with username {}", upToken.getUsername());
return new SimpleAuthenticationInfo(user, user.getPassword(),
getName());
}
@Override
protected AuthorizationInfo doGetAuthorizationInfo(final
PrincipalCollection thePrincipals) {
Set<String> roles
= new HashSet<String>();
Set<Permission> permissions
= new HashSet<Permission>();
Collection<Principal> principalsList =
thePrincipals.byType(Principal.class);
SecurityController securityController =
controllerFactory.getController(SecurityController.class); // !!!! MY CUSTOM
DAO TO LOAD USER STUFF FROM !!!
if (principalsList.isEmpty()) {
throw new AuthorizationException("Empty principals
list!");
}
for (Principal userPrincipal : principalsList) {
try {
Principal user =
securityController.loadById(Principal.class,
userPrincipal.getUuid()); //!!! CUSTOM DAO LOADING CODE !!!!
if (user == null) {
throw new
AuthorizationException("Unable to find user by principal id
[" + String.valueOf(userPrincipal.getUuid()) + "]");
}
Set<Role> userRoles = user.getRoles();
log.debug("Using roles [{}] info for [{}]
principal", new
Object[]{userRoles, user});
for (Role role : userRoles) {
roles.add(role.getName());
Set<WildcardPermission> userPermissions
= role.getPermissions();
log.debug("Using role [{}] permissions
[{}]", new Object[]{role,
userPermissions});
permissions.addAll(userPermissions);
}
} catch (InvalidDataException idEx) {
throw new AuthorizationException(idEx);
} catch (ResourceException rEx) {
throw new AuthorizationException(rEx);
}
}
log.info("Loaded authorization info for [{}] principals",
principalsList.size());
SimpleAuthorizationInfo info = new
SimpleAuthorizationInfo(roles);
info.setRoles(roles);
info.setObjectPermissions(permissions);
return info;
}
did this helped ?
Regards
Armando
--
View this message in context:
http://shiro-user.582556.n2.nabble.com/Use-shiro-in-wicket-application-tp6309015p6313164.html
Sent from the Shiro User mailing list archive at Nabble.com.
