Agreed, I do think additional realms should NOT be checked after the first successful auth. I do worry a little that changing this behavior could break things (thinking of use with a ModularRealmAuthorizer) https://xkcd.com/1172/
Thoughts & ideas? On Mon, Dec 10, 2018 at 3:42 AM scSynergy <[email protected]> wrote: > @Brian: Is this behavior of FirstSuccessfulStrategy by design or is it a > bug? > To me it seems wrong that authorization is checked against a realm which > was > not authenticated against - after all, that second authentication might > fail, if it were to be tried. > > > > -- > Sent from: http://shiro-user.582556.n2.nabble.com/ >
