#first try at which notation ?????????? # ======================= # Shiro INI configuration # =======================
[main] # Objects and their properties are defined here, # Such as the securityManager, Realms and anything # else needed to build the SecurityManager [users] # The 'users' section is for simple deployments # when you only need a small number of statically-defined # set of User accounts. administrator = administrator,administrator anonymous = anonymous,anonymous [roles] # The 'roles' section is for simple deployments # when you only need a small number of statically-defined # roles. administrator = create,read,update,delete anonymous = read,update [urls] # The 'urls' section is used for url-based security # in web applications. We'll discuss this section in the # Web documentation #second try at which notation ?????????? /authc/login = anon /authc/** = authc /user/login = anon /user/** = user /roles/administrator/** = roles[administrator] /roles/anonymous/** = roles[anonymous] /perms/create/** = perms[*:create] /perms/read/** = perms[*:read] /perms/update/** = perms[*:update] /perms/delete/** = perms[*:delete] #third try at which notation ?????????? user.administrator = administrator, administrator user.anonymous = anonymous, anonymous role.administrator = user:create role.administrator = user:read role.administrator = user:update role.administrator = user:delete role.anonymous = user:read role.anonymous = user:update #http://shiro.apache.org/authorization.html#Authorization-PermissionGranularity
