| Package | Description |
|---|---|
| org.apache.shiro.authz |
Core interfaces and exceptions supporting Authorization (access control).
|
| org.apache.shiro.cas | |
| org.apache.shiro.mgt |
Provides the master
SecurityManager interface and a default implementation
hierarchy for managing all aspects of Shiro's functionality in an application. |
| org.apache.shiro.realm |
Components and sub-packages used in supporting the core
Realm interface. |
| org.apache.shiro.realm.activedirectory |
Realms that acquire security data from a Microsoft Active Directory.
|
| org.apache.shiro.realm.jdbc |
Realms that acquire security data from an RDBMS (Relational Database Management System) using the
JDBC API.
|
| org.apache.shiro.realm.ldap |
Realms that acquire security data from an LDAP (Lightweight Directory Access Protocol) server
utilizing LDAP/Naming APIs.
|
| org.apache.shiro.realm.text |
Realms that acquire security data from text-based data sources such as
Files or
text streams. |
| org.apache.shiro.spring.boot.autoconfigure | |
| org.apache.shiro.spring.config | |
| org.apache.shiro.spring.config.web.autoconfigure | |
| org.apache.shiro.spring.web.config | |
| org.apache.shiro.web.mgt |
Components supporting web-specific
SecurityManager implementations. |
| Modifier and Type | Class and Description |
|---|---|
class |
ModularRealmAuthorizer
A ModularRealmAuthorizer is an Authorizer implementation that consults one or more configured
Realms during an authorization operation. |
| Modifier and Type | Class and Description |
|---|---|
class |
CasRealm
Deprecated.
replaced with Shiro integration in buji-pac4j.
|
| Modifier and Type | Interface and Description |
|---|---|
interface |
SecurityManager
A
SecurityManager executes all security operations for all Subjects (aka users) across a
single application. |
| Modifier and Type | Class and Description |
|---|---|
class |
AuthenticatingSecurityManager
Shiro support of a
SecurityManager class hierarchy that delegates all
authentication operations to a wrapped Authenticator instance. |
class |
AuthorizingSecurityManager
Shiro support of a
SecurityManager class hierarchy that delegates all
authorization (access control) operations to a wrapped Authorizer instance. |
class |
CachingSecurityManager
A very basic starting point for the SecurityManager interface that merely provides logging and caching
support.
|
class |
DefaultSecurityManager
The Shiro framework's default concrete implementation of the
SecurityManager interface,
based around a collection of Realms. |
class |
RealmSecurityManager
Shiro support of a
SecurityManager class hierarchy based around a collection of
Realms. |
class |
SessionsSecurityManager
Shiro support of a
SecurityManager class hierarchy that delegates all
session operations to a wrapped
SessionManager instance. |
| Modifier and Type | Method and Description |
|---|---|
Authorizer |
AuthorizingSecurityManager.getAuthorizer()
Returns the underlying wrapped Authorizer instance to which this SecurityManager
implementation delegates all of its authorization calls.
|
| Modifier and Type | Method and Description |
|---|---|
void |
AuthorizingSecurityManager.setAuthorizer(Authorizer authorizer)
Sets the underlying Authorizer instance to which this SecurityManager implementation will
delegate all of its authorization calls.
|
| Modifier and Type | Class and Description |
|---|---|
class |
AuthorizingRealm
An
AuthorizingRealm extends the AuthenticatingRealm's capabilities by adding Authorization
(access control) support. |
class |
SimpleAccountRealm
A simple implementation of the
Realm interface that
uses a set of configured user accounts and roles to support authentication and authorization. |
| Modifier and Type | Class and Description |
|---|---|
class |
ActiveDirectoryRealm
A
Realm that authenticates with an active directory LDAP
server to determine the roles for a particular user. |
| Modifier and Type | Class and Description |
|---|---|
class |
JdbcRealm
Realm that allows authentication and authorization via JDBC calls.
|
| Modifier and Type | Class and Description |
|---|---|
class |
AbstractLdapRealm
A
Realm that authenticates with an LDAP
server to build the Subject for a user. |
class |
DefaultLdapRealm
An LDAP
Realm implementation utilizing Sun's/Oracle's
JNDI API as an LDAP API. |
class |
JndiLdapRealm
Deprecated.
Renamed to
DefaultLdapRealm, this class will be removed prior to 2.0 |
| Modifier and Type | Class and Description |
|---|---|
class |
IniRealm
|
class |
PropertiesRealm
A
TextConfigurationRealm that defers all logic to the parent class, but just enables
Properties based configuration in addition to the parent class's String configuration. |
class |
TextConfigurationRealm
A SimpleAccountRealm that enables text-based configuration of the initial User, Role, and Permission objects
created at startup.
|
| Modifier and Type | Method and Description |
|---|---|
protected Authorizer |
ShiroAutoConfiguration.authorizer() |
| Modifier and Type | Method and Description |
|---|---|
protected Authorizer |
ShiroConfiguration.authorizer() |
protected Authorizer |
AbstractShiroConfiguration.authorizer() |
| Modifier and Type | Method and Description |
|---|---|
protected Authorizer |
ShiroWebAutoConfiguration.authorizer() |
| Modifier and Type | Method and Description |
|---|---|
protected Authorizer |
ShiroWebConfiguration.authorizer() |
| Modifier and Type | Interface and Description |
|---|---|
interface |
WebSecurityManager
This interface represents a
SecurityManager implementation that can used in web-enabled applications. |
| Modifier and Type | Class and Description |
|---|---|
class |
DefaultWebSecurityManager
Default
WebSecurityManager implementation used in web-based applications or any
application that requires HTTP connectivity (SOAP, http remoting, etc). |
Copyright © 2004–2017 The Apache Software Foundation. All rights reserved.