I have a working Shiro application that behaves as expected. However after login if the user makes a request that results in a 404 they are effectively "logged out" by Shiro. More precisely Shiro seems to forget that the user is authenticated.
Upon 404 I have my web.xml configured to direct the user to a standard error page that simply displays a message. I expect the user to stay logged in, but they are redirected to login on the next click. I'm not sure if I have something configured incorrectly or if this is a bug. Any ideas or others see this behavior? -- View this message in context: http://shiro-user.582556.n2.nabble.com/404-results-in-logout-tp7274989p7274989.html Sent from the Shiro User mailing list archive at Nabble.com.
