Hi I have implemented Apache shiro in a monolithic application,where i am using multiple realm for authentication (jdbc and LDAP both) and authorization based on the roles and permissions stored in the database. But now we are upgrading the application and converting it into a micorservices architecture, where different modules are deployed in different domains or different servers having different ports. The frontend is a gwt based application which will interact with all these these multiple wars, which will also e deployed on a separate server.
I wanted to know how I can achieve this with apache shiro, without using CAS or oauth. The user once authenticated need not be authenticated again in different war or atleast the login form should not come, if any athentication is required then should be done behind the scenes and all the rest calls should be authorized. -- View this message in context: http://shiro-user.582556.n2.nabble.com/Apache-shiro-with-microservices-tp7580992.html Sent from the Shiro User mailing list archive at Nabble.com.
