This package primarily exists as a root classpath distinction, but it does contain two core classes widely used by applications,
Components used to support the framework's AOP/interception support classes.
AspectJ support for enabling dynamic authorization using Shiro's annotations.
Core interfaces and exceptions concerning Authentication (the act of logging-in).
Support for validating credentials (such as passwords or X509 certificates) during authentication via the
Support for PAM, or Pluggable Authentication Modules, which is the capability to authenticate a user against multiple configurable (pluggable) modules (Shiro calls these
Core interfaces and exceptions supporting Authorization (access control).
Annotations used to restrict which classes, instances, or methods may be accessed or invoked depending on the caller's access abilities or authentication state.
Contains AOP implementation support classes specifically used for authorization operations, particularly supporting AOP Method Interceptors and JSR-175 metadata Annotations.
Support and default implementations for Shiro's
Caching support used to enhance performance for security operations.
Ehcache-based implementations of Shiro's cache interfaces.
Components for encoding and decoding of data across multiple formats, especially useful in Shiro's cryptography and web functionality.
Components that support configuring Shiro in any application.
Cryptography Cipher and Hashing components that greatly simplify the JDK's cryptography concepts and add additional convenient behavior.
Cryptographic Hashing components that greatly simplify one-way data hashing in an application.
Package containing various components useful when building Data Access Objects (DAOs), including a generic Data Access Exception hierarchy.
Concepts used to represent Shiro's aggregate state in an application.
Support for reading and writing (input/output) raw data from multiple resource locations.
Enables accessing objects located in JNDI that might be useful when configuring a Shiro-enabled application.
Provides the master
Components and sub-packages used in supporting the core
Realms that acquire security data from a Microsoft Active Directory.
Realms that acquire security data from an RDBMS (Relational Database Management System) using the JDBC API.
Support for acquiring Realms from JNDI, particularly useful for configuring Shiro in JEE or EJB environments.
Realms that acquire security data from an LDAP (Lightweight Directory Access Protocol) server utilizing LDAP/Naming APIs.
Realms that acquire security data from text-based data sources such as
Components related to managing sessions, the time-based data contexts in which a Subject interacts with an application.
EIS (Enterprise Information System)-tier components that can perform CRUD operations for sessions using any EIS API.
Quartz-based implementations of components that help SessionManager implementations maintain sessions (timed expiration, orphan cleanup, etc).
Spring Application Framework support for enabling Shiro in spring applications.
Support to enable Spring-based remote method invocations to carry a Shiro session ID as part of the invocation payload, allowing remote clients to perform security operations.
Spring AOP support for enabling Shiro annotations in Spring-configured applications.
Spring-specific components for use in Spring-based web applications.
Components supporting the
Concrete support implementations of most of the
Your run-of-the-mill 'util' package for components and logic widely used across the framework that can't find their home into a proper OO hierarchy (or, most likely for things used across many hierarchies).
Shiro's web support module to support security in any web-enabled application.
Web-specific implementation extensions to the
Base package supporting all Servlet
The filter 'mgt' (management) package contains components used in managing Filters that are available for filter chain construction, the filter chains themselves, as well as resolving filter chains based by name.
Components supporting web-specific
Shiro-specific implementations of the Servlet API (Servlet Filters, et al).
Components supporting Session management in web-enabled applications.
Supporting implementations of
Provides the Shiro JSP Tag Library implementations.