There isn't anything built-in per se. However, if you're using Shiro's native session management, and you use a queryable session data store (SessionDAO), you can query for any session within the session timeout owned by a particular user.
If there is a session for that end-user, then they are using the app, and another authentication should be prevented. If you have any ideas of how this might be able to be supported by Shiro natively (code patches welcome of course!), I'd love to investigate the possibility of including it. Cheers, -- Les Hazlewood CTO, Stormpath | http://stormpath.com <http://www.stormpath.com/> | 888.391.5282 twitter: @lhazlewood | http://twitter.com/lhazlewood blog: http://leshazlewood.com stormpath blog: http://www.stormpath.com/blog<http://www.stormpath.com/blog/index> On Mon, May 7, 2012 at 6:20 PM, Warren Bell <[email protected]> wrote: > Is there anything built into Shiro that will keep a user from logging > into more than one device at a time ? I have another non Shiro app that > I wrote that does this. I had to keep track of users, sessions and > devices. It would be nice if Shiro has something like this built in. > > -- > Thanks, > > Warren Bell >
