I have also used urlrewritefilter, and found it can be tricky to get the right behavior with other filters.
In this case, can you simply have Shiro filter the pre-forward URL? Say, by adding something like this to shiro.ini: /discover = authc Then, when the forward happens, the URL has already been authenticated. -- View this message in context: http://shiro-user.582556.n2.nabble.com/Using-urlrewritefilter-forward-with-Shiro-tp7578765p7578767.html Sent from the Shiro User mailing list archive at Nabble.com.
