Hello, I have a setup, already explained in this topic http://shiro-user.582556.n2.nabble.com/multiple-realms-configuration-td6742675.html
> The project, I'm working on, is a MMO game with 2 applications (in fact > there are more, but it's out of scope): web application and MMO server > itself. MMO server is based on Smartfox and uses custom shiro realm. Web > realm is based on shiro web extension. Sessions DAO and session id is the > same for both applications. Spring 3.0.5 and shiro 1.1 are used to integrate MMO and web applications. Both MMO and web application use the same session DAO, defined in spring: - mmo application definition - https://gist.github.com/1200069 - web application definition - https://gist.github.com/1200071 Web application context has mmo context, as a parent. Using embedded jetty as application server and beans are shared between contexts. Unless I bind explicitly web security manager, using security utils ( https://gist.github.com/1200074) session DAO bean is not shared. Security manager uses own session dao, ignoring the one, defined in spring. Debugging shows that web application even doesn't use web security manager defined in spring. Another instance of DefaultSecurityManager. If it's parent mmo manager, then it should have at least the same session dao. Is it a correct behavior? Shiro-spring documentation ( http://shiro.apache.org/spring.html) doesn't say anything about binding security manager. Should I bind explicitly or let shiro decide? Thanks, Alexandr Vasilenko Web Developer Skype:menterr mob: +38097-611-45-99
