Hi, I wrote a Permission filter (MyFilter) that based off of AuthorizationFilter. Calls come to this filter for GETS and POSTs. But it doesn't come to isAccessAllowed method for DELETE. So, if i have a resource /roles, Post and Get to this resource triggers the call to MyFilter.isAccessAllowed method. But it doesn't trigger for DELETE. Any idea? Below is my shiro.ini file.
Thanks Venkat [main] casFilter = org.apache.shiro.cas.CasFilter casFilter.failureUrl = /error.jsp myFilter = com.xyz.security.shiro.MyFilter mypermResolver = com.xyz.security.shiro.MyPermrResolver casRealm = com.xyz.security.shiro.myCasRealm casRealm.defaultRoles = aRole casRealm.casServerUrlPrefix = https://localhost:8443/cas casRealm.casService = https://localhost:8443/xyz/security/auth casRealm.permissionResolver = $mypermResolver casSubjectFactory = org.apache.shiro.cas.CasSubjectFactory securityManager.subjectFactory = $casSubjectFactory roles.loginUrl = https://localhost:8443/cas/login?service=https://localhost:8443/xyz/security/auth [urls] /auth = casFilter /* = roles[aRole], myFilter -- View this message in context: http://shiro-user.582556.n2.nabble.com/Permission-Filter-not-getting-invoked-for-DELETE-tp7578606.html Sent from the Shiro User mailing list archive at Nabble.com.
