>From the PrincipalCollection object, you can get the list of realms the Subject was authenticated from: `getRealmNames()`, and/or use `fromRealm(realmName)` to narrow the collection down to a single realm, from there you can narrow the permission checks to a single realm. (this way you never worry about the cache details)
If you want to change the authorizer it should work the same way, `securityManager.authorizer = your impl` Does that help? On Tue, Dec 11, 2018 at 1:01 PM [email protected] <[email protected]> wrote: > So for the first issue of checking all the Realms, even after a successful > Auth takes place...I just extended the ModularRealmAuthenticator to simple > stop checking other Realms once it gets a valid Auth. > > I would like to only check Authorization on the Realm that was > Authenticated > though. I am not sure how to do it without digging into the Realm cache to > determine if the given Subject was authenticated with a given Realm. Seems > like there should be an easier way, especially in the case where caching is > turned off. > > > > -- > Sent from: http://shiro-user.582556.n2.nabble.com/ >
