You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@shiro.apache.org by "Brian Demers (JIRA)" <ji...@apache.org> on 2016/10/21 14:52:58 UTC

[jira] [Resolved] (SHIRO-591) Basic Auth Filter permissive mode does NOT work

     [ https://issues.apache.org/jira/browse/SHIRO-591?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Brian Demers resolved SHIRO-591.
--------------------------------
       Resolution: Fixed
    Fix Version/s: 1.4.0

> Basic Auth Filter permissive mode does NOT work
> -----------------------------------------------
>
>                 Key: SHIRO-591
>                 URL: https://issues.apache.org/jira/browse/SHIRO-591
>             Project: Shiro
>          Issue Type: Bug
>          Components: Web
>    Affects Versions: 1.3.0, 1.3.1, 1.3.2
>            Reporter: Brian Demers
>              Labels: regresion
>             Fix For: 1.4.0
>
>
> The fix for SHIRO-200 assumed all filter options were http methods, for example:
> {authcBasic[POST, GET]}
> However, the 'permissive' option is also valid, which instructs the filter to check for authentication, but NOT require it:
> {authcBasic[permissive]}
> Or the two combine in something like:
> authcBasic[permissive,POST, GET]



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)