I'm using the new shiro-guice integration module (available in the latest
Shiro snapshot), and had a problem marrying it with shiro.ini. I'd like to
specify user passwords using MD5-hashed values in the INI file, but for this
to work, I have to instruct the IniRealm to use that algorithm.
Because I'm wiring things together with Guice, we can't use the default
[main] section of the INI file. My first pass was to create two providers
in my Guice module and wire the MD5 CredentialsMatcher by hand as follows:
@Override
protected void configureShiroWeb() {
bindRealm().to( IniRealm.class );
}
@Provides
@Singleton
Ini loadShiroIni() {
return Ini.fromResourcePath( "classpath:shiro.ini" );
}
@Provides
@Singleton
IniRealm loadIniRealm( Ini ini ) {
IniRealm realm = new IniRealm( ini );
HashedCredentialsMatcher credentialsMatcher = new
HashedCredentialsMatcher();
credentialsMatcher.setHashAlgorithmName( new
Md5Hash().getAlgorithmName()
);
realm.setCredentialsMatcher( credentialsMatcher );
return realm;
}
This works. It was suggested to me to bind a CredentialsMatcher rather than
using a Provider. As I tried to implement this though, I realized this
won't work since Guice requires an @Inject annotation on a constructor or a
setter method in order to inject a bound class. For classes whose source
you do not control, you must otherwise use a Provider (or bind
toConstructor(), but that's not relevant here).
Shiro, of course, doesn't have the @Inject annotation on
AuthenticatingRealm.setCredentialsMatcher(), so I think I must use a
Provider as I've done. Is there anything I'm missing? Is there a cleaner
(read: not hand-wired) approach to do this with Guice?
--
View this message in context:
http://shiro-user.582556.n2.nabble.com/Wiring-a-CredentialsMatcher-into-a-Realm-using-Guice-tp6645572p6645572.html
Sent from the Shiro User mailing list archive at Nabble.com.
