P.S. A shiro.ini setup for your custom filter would probably look like this:
[main] # override the default 'authc' filter with the custom one: authc = com.foo.my.AuthenticationFilter [urls] # logout filter available in trunk only - will be in 1.2: /logout = logout # everything else requires authentication: /** = authc Cheers, -- Les Hazlewood CTO, Katasoft | http://www.katasoft.com | 888.391.5282 twitter: http://twitter.com/lhazlewood katasoft blog: http://www.katasoft.com/blogs/lhazlewood personal blog: http://leshazlewood.com
