Our good friends over at Stormpath have AngularJS experience https://stormpath.com/blog/why-we-rebuilt-with-angular/
Personally, I don't, but I can add that for client side apps you need to think about things a little different then you would when you were serving up pages build from a servlet based framework. Since the client likely has all or most of your application downloaded anyway, need need to make the client smart enough to deal with hiding and showing the appropriate content (and your server side still needs to not serve resources that your the user doesn't have access too) On Thu, Feb 12, 2015 at 9:00 PM, Corneau Damien <[email protected]> wrote: > Hi, > > I've been using Apache Shiro in multiple projects, however we are now > working with a project made with AngularJS. > > Usually we would apply some custom URL filters in order to keep some pages > public, and some available only to logged users. > > One problem is that AngularJS is using hashbang in its urls in order to > take care of the routing, making every request look the same and URL > filters not being able to apply. > > There is a way to delete hashbang in AngularJS but it would still be > active on IE9. Which means that the security would only apply on some web > browsers... not that secure. > > Did anybody had experience using Apache Shiro with AngularJS at an URL > level? Or does anybody know a way to 'fix' this kind of hashbang problem? > > Thank you >
