伊人婷婷综合缴情亚洲五月,午夜亚洲WWW湿好爽,久久国产亚洲观看

J-Hi Dwz 附件上傳類型

摘要: Code highlighting produced by Actipro CodeHighlighter (freeware) http://www.CodeHighlighter.com/ --> 1 <dl> 2 &nbs... 閱讀全文

posted @ 2012-03-04 17:33 周磊閱讀(2934) | 評論 (0) | 編輯收藏

shiro1.2學習筆記

org.apache.shiro.web.filter.mgt.DefaultFilter
默認的內置攔截器

anon(AnonymousFilter.class),

authc(FormAuthenticationFilter.class),

authcBasic(BasicHttpAuthenticationFilter.class),

logout(LogoutFilter.class),

noSessionCreation(NoSessionCreationFilter.class),

perms(PermissionsAuthorizationFilter.class),

port(PortFilter.class),

rest(HttpMethodPermissionFilter.class),

roles(RolesAuthorizationFilter.class),

ssl(SslFilter.class),

user(UserFilter.class);

anno 允許匿名訪問，

Filter that allows access to a path immeidately without performing security checks of any kind.

This filter is useful primarily in exclusionary policies, where you have defined a url pattern to require a certain security level, but maybe only subset of urls in that pattern should allow any access.

For example, if you had a user-only section of a website, you might want to require that access to any url in that section must be from an authenticated user.

Here is how that would look in the IniShiroFilter configuration:

[urls] /user/** = authc

But if you wanted /user/signup/** to be available to anyone, you have to exclude that path since it is a subset of the first. This is where the AnonymousFilter ('anon') is useful:

[urls] /user/signup/** = anon /user/** = authc>

Since the url pattern definitions follow a 'first match wins' paradigm, the anon filter will match the /user/signup/** paths and the /user/** path chain will not be evaluated.

posted @ 2012-03-03 23:52 周磊閱讀(987) | 評論 (0) | 編輯收藏

[收集整理] Shiro