If your Realm implementation's getAuthenticationInfo method (or doGetAuthenticationInfo method if subclassing AuthenticatingRealm) returns a non-null AuthenticationInfo instance that has a non-null/non-empty PrincipalCollection, the authentication attempt for that realm will be considered successful.
HTH, -- Les Hazlewood CTO, Stormpath | http://stormpath.com | 888.391.5282 twitter: @lhazlewood | http://twitter.com/lhazlewood blog: http://leshazlewood.com stormpath blog: http://www.stormpath.com/blog On Mon, May 21, 2012 at 1:38 PM, mgiammarco <[email protected]> wrote: > Hello, > I have a server where I do authentication with shiro. > I receive requests from some clients where users are already authenticated > (like sso...) and I receive only user name. > How can I tell shiro to not check for password? > Thanks in advance, > Mario > > -- > View this message in context: > http://shiro-user.582556.n2.nabble.com/Authentication-without-password-yes-really-tp7569993.html > Sent from the Shiro User mailing list archive at Nabble.com.
