You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@shiro.apache.org by Alex Orlov <oo...@mail.ru> on 2020/11/04 12:28:00 UTC
Re[2]: Principal in Shiro
Could you explain what is correct? The question is if a principal is an ACTOR or
ACTOR’S attribute. Everyone should agree that user != username, shouldn’t he?
--
Best regards, Alex Orlov
>Среда, 4 ноября 2020, 15:01 +03:00 от Benjamin Marwell <bm...@apache.org>:
>
>Correct.
>
>To complete the picture:
>
>https://shiro.apache.org/terminology.html
>
>Also, the PrincipalCollection knows which realms the user is known in. This is why most methods return such a collection, not a single Principal.
>
>Most apps only have one realm, but they could have multiple realms. E.g. LDAP and a config file.
>
>
>
>On Wed, 4 Nov 2020, 12:30 Andreas Reichel, < andreas@manticore-projects.com > wrote:
>>
>>
>>
>>On Wed, 2020-11-04 at 13:07 +0300, Alex Orlov wrote:
>>>So, could anyone explain what is Principal — is it a User or User.getId()?
>>>
>>
>>Good afternoon Alex.
>>
>>while I am just a Shiro user (but not a developer), my understanding is, that a Principal is anything you (or a service) can authenticate or authorize against.
>>Any entity, you can send to a service and get a response ( "yes" authenticated) for, is a principal.
>>
>>The nature of this principal depends on the service itself.
>>If the authentication service expects a Username, then this Username is a Principal. But if the service expects a Global Unique Token, then this Username would not qualify as a Principal (but the Token would).
>>
>>Cheers!
>>Andreas