Hi Jerome, Thank you very much for suggesting this approach . I have another doubt, if I go with this approach, in shiro.ini file:
Can I remove "authc.loginUrl" entry then, as I will not have any dedicated login page now? and one another understanding: I use successUrl, so I can customze this success page for that particular user based on role.I mean, this success page would be a common page for all type(role) of user but a user would be able to see only those items which he is authorised for, based on the role returned by shiro jdbc realm fetched from the database. Do I really need now "roles.unauthorizedUrl" mapping in the ini file? Please correct my above understanding if I am wrong somewhere in my approach. Thanks again. Regards. -- View this message in context: http://shiro-user.582556.n2.nabble.com/login-into-application-without-dedicated-login-page-using-shiro-API-tp7577620p7577652.html Sent from the Shiro User mailing list archive at Nabble.com.
