Let me explain as simple as possible in shiro.ini loginUrl << url containing login form successUrl << redirect to this url after successful authentication
set every page under /authPages/ for shiro to check for user authenticated .. if not user is redirected to someFilter.loginUrl sets all pages for annonimius access ... and will no create any shiro session .. I hope I wrote it easy enough to understand regads Armando -- View this message in context: http://shiro-user.582556.n2.nabble.com/question-about-loginUrl-successUrl-in-shiroFilter-tp7581639p7581673.html Sent from the Shiro User mailing list archive at Nabble.com.
