The other way is to define it within the filterChainDefinitions. You are
still doing essentially the same thing, but you're being explicit about the
URL or URL path. Either way you'll need a map of User to URL through some
mechanism.
<bean id="shiroFilter"
class="org.apache.shiro.spring.web.ShiroFilterFactoryBean">
<property name="securityManager" ref="securityManager"/>
<property name="loginUrl" value="/login.jsp"/>
<property name="filterChainDefinitions">
<value>
/login.jsp = authc
/url/path/** = authc, perms[some-permission:view]
--
View this message in context:
http://shiro-user.582556.n2.nabble.com/How-to-find-out-it-a-URL-is-authorized-tp7212711p7214512.html
Sent from the Shiro User mailing list archive at Nabble.com.
