You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@shiro.apache.org by "Sean Lyons (JIRA)" <ji...@apache.org> on 2017/07/05 22:08:00 UTC

[jira] [Created] (SHIRO-630) ModularRealmAuthorizer ignores JAX-RS proxied Realms

Sean Lyons created SHIRO-630:
--------------------------------

             Summary: ModularRealmAuthorizer ignores JAX-RS proxied Realms
                 Key: SHIRO-630
                 URL: https://issues.apache.org/jira/browse/SHIRO-630
             Project: Shiro
          Issue Type: Bug
         Environment: Jersey version 2.25
Shiro version 1.2+
            Reporter: Sean Lyons


I'm developing in a web environment that uses JAX-RS for dependency injection.  I'd like to inject my realms by proxy so that they can be injected in request scope into singleton parents.  However, the logic in ModularRealmAuthorizer#isPermitted(PrincipalCollection, Permission) does an `instanceof Authorizer` check that will fail for proxied, injected realms because they are of type `Proxy`.  This issue seems to appear in versions 1.2 and later.





--
This message was sent by Atlassian JIRA
(v6.4.14#64029)