Hi Graham, Shiro does not provide OOTB support for OpenID. You can write your own provider in Shiro or use PAC4J which is build on top of Shiro and provides support for OAuth, OpenID connect and SAML. https://github.com/bujiio/buji-pac4j
Regarding what goes in Shiro.INI, the link that you specified is what is available. It is pretty simple, based on BeanUtils and it allows you it initialize any Java bean/components. This covers pretty much what it contains: # ======================= # Shiro INI configuration # ======================= [main] # Objects and their properties are defined here, # Such as the securityManager, Realms and anything # else needed to build the SecurityManager [users] # The 'users' section is for simple deployments # when you only need a small number of statically-defined # set of User accounts. [roles] # The 'roles' section is for simple deployments # when you only need a small number of statically-defined # roles. [urls] # The 'urls' section is used for url-based security # in web applications. We'll discuss this section in the # Web documentation Thanks, -Gautam Thanks, -Gautam On Thu, Oct 12, 2017 at 9:09 AM, Graham Leggett <[email protected]> wrote: > Hi all, > > We have an existing application provided by a vendor that embeds Apache > Shiro to do authnz. I have been looking for reference documentation for the > shiro.ini file, but have only been able to find this which covers API > programming in Java, not administrator configuration of a Shiro application: > > http://shiro.apache.org/configuration.html#Configuration-INISections > > Does anyone have any documentation describing what goes into shiro.ini? > > I was hoping to see what SSO options are supported by Shiro, but I cannot > find anything documented on this. > > Specifically, I want to know if Shiro does OpenID Connect, and if it does, > what version of Shiro added support for this? > > Regards, > Graham > — > > -- Thanks, -Gautam
