Hello Jared, Thank you very much for the very detailed response!
It isn't really a cache but more a "profile". These resources are installed locally on the users computer. The user can then interact with these resources. Your solution makes sense...but given the complete problem I am trying to solve, it won't be terribly "clean". In this UserDao, I would still need to handle the mappings from principal -> group -> role -> permission which would replicate the Realm implementation. I wouldn't want the application itself to call "getAssignedResources(String user)", I would want the application to just call "getAssignedResources()", not having to know what the original principals were (which suggests I get the UserDao or ResourceCacher from the Subject). Anyway, thank you very much again from the very detailed response. I guess I need to think about this a little more. regards, Gareth -- View this message in context: http://shiro-user.582556.n2.nabble.com/Retrieving-The-List-Of-Permissions-Or-Roles-For-A-User-tp6634613p6645492.html Sent from the Shiro User mailing list archive at Nabble.com.
