| Package | Description |
|---|---|
| org.apache.shiro |
This package primarily exists as a root classpath distinction, but it does contain two core classes widely used by applications,
SecurityUtils and
ShiroException.
|
| org.apache.shiro.authc |
Core interfaces and exceptions concerning Authentication (the act of logging-in).
|
| org.apache.shiro.authc.pam |
Support for
PAM, or
Pluggable
Authentication
Modules, which is the capability to authenticate a user against multiple configurable (pluggable)
modules (Shiro calls these
Realms).
|
| org.apache.shiro.authz |
Core interfaces and exceptions supporting Authorization (access control).
|
| org.apache.shiro.authz.permission |
Support and default implementations for Shiro's
Permission interface.
|
| org.apache.shiro.cache |
Caching support used to enhance performance for any security operation.
|
| org.apache.shiro.codec |
Components for encoding and decoding of data across multiple formats, especially useful in Shiro's cryptography and web functionality.
|
| org.apache.shiro.config |
Components that support configuring Shiro in any application.
|
| org.apache.shiro.crypto |
Cryptography Cipher and Hashing components that greatly simplify the JDK's cryptography concepts and add additional convenient behavior.
|
| org.apache.shiro.dao |
Package containing various components useful when building Data Access Objects (DAOs), including a generic Data Access Exception hierarchy.
|
| org.apache.shiro.env |
Concepts used to represent Shiro's aggregate state in an application.
|
| org.apache.shiro.io |
Support for reading and writing (input/output) raw data from multiple resource locations.
|
| org.apache.shiro.ldap | |
| org.apache.shiro.session |
Components related to managing sessions, the time-based data contexts in which a Subject interacts with an application.
|
| org.apache.shiro.subject |
Components supporting the
Subject interface, the most important concept in Shiro's API.
|
| org.apache.shiro.subject.support |
Concrete support implementations of most of the
org.apache.shiro.subject interfaces.
|
| org.apache.shiro.util |
Your run-of-the-mill 'util' pacakge for components and logic widely used across the framework that can't find their home into a proper OO hierarchy (or, most likely for things used across many hierarchies).
|
| Modifier and Type | Class and Description |
|---|---|
class |
UnavailableSecurityManagerException
Exception thrown when attempting to acquire the application's
SecurityManager instance, but Shiro's lookup heuristics cannot find one.
|
| Modifier and Type | Class and Description |
|---|---|
class |
AccountException
Exception thrown due to a problem with the account under which an authentication attempt is being executed.
|
class |
AuthenticationException
General exception thrown due to an error during the Authentication process.
|
class |
ConcurrentAccessException
Thrown when an authentication attempt has been received for an account that has already been authenticated (i.e.
|
class |
CredentialsException
Exception thrown due to a problem with the credential(s) submitted for an account during the authentication process.
|
class |
DisabledAccountException
Thrown when attempting to authenticate and the corresponding account has been disabled for some reason.
|
class |
ExcessiveAttemptsException
Thrown when a system is configured to only allow a certain number of authentication attempts over a period of time and the current session has failed to authenticate successfully within that number.
|
class |
ExpiredCredentialsException
Thrown during the authentication process when the system determines the submitted credential(s) has expired and will not allow login.
|
class |
IncorrectCredentialsException
Thrown when attempting to authenticate with credential(s) that do not match the actual credentials associated with the account principal.
|
class |
LockedAccountException
A special kind of
DisabledAccountException, this exception is thrown when attempting to authenticate and the corresponding account has been disabled explicitly due to being locked.
|
class |
UnknownAccountException
Thrown when attempting to authenticate with a principal that doesn't exist in the system (e.g.
|
| Modifier and Type | Class and Description |
|---|---|
class |
UnsupportedTokenException
Exception thrown during the authentication process when an
AuthenticationToken implementation is encountered that is not supported by one or more configured
Realms.
|
| Modifier and Type | Class and Description |
|---|---|
class |
AuthorizationException
Exception thrown if there is a problem during authorization (access control check).
|
class |
HostUnauthorizedException
Thrown when a particular client (that is, host address) has not been enabled to access the system or if the client has been enabled access but is not permitted to perform a particular operation or access a particular resource.
|
class |
UnauthenticatedException
Exception thrown when attempting to execute an authorization action when a successful authentication hasn't yet occurred.
|
class |
UnauthorizedException
Thrown to indicate a requested operation or access to a requested resource is not allowed.
|
| Modifier and Type | Class and Description |
|---|---|
class |
InvalidPermissionStringException
Thrown by
PermissionResolver when the String being parsed is not valid for that resolver.
|
| Modifier and Type | Class and Description |
|---|---|
class |
CacheException
Root class of all Shiro exceptions related to caching operations.
|
| Modifier and Type | Class and Description |
|---|---|
class |
CodecException
Root exception related to issues during encoding or decoding.
|
| Modifier and Type | Class and Description |
|---|---|
class |
ConfigurationException
Root exception indicating there was a problem parsing or processing the Shiro configuration.
|
class |
UnresolveableReferenceException
Exception thrown when a reference to an object is made, but that object cannot be found.
|
| Modifier and Type | Class and Description |
|---|---|
class |
CryptoException
Base Shiro exception for problems encountered during cryptographic operations.
|
class |
UnknownAlgorithmException
Exception thrown when attempting to lookup or use a cryptographic algorithm that does not exist in the current JVM environment.
|
| Modifier and Type | Class and Description |
|---|---|
class |
DataAccessException
Generic exception representing a problem when attempting to access data.
|
class |
InvalidResourceUsageException
Root exception indicating invalid or incorrect usage of a data access resource.
|
| Modifier and Type | Class and Description |
|---|---|
class |
EnvironmentException
Exception thrown for errors related to
Environment instances or configuration.
|
class |
RequiredTypeException
Exception thrown when attempting to acquire an object of a required type and that object does not equal, extend, or implement a specified
Class.
|
| Modifier and Type | Class and Description |
|---|---|
class |
SerializationException
Root exception for problems either serializing or de-serializing data.
|
| Modifier and Type | Class and Description |
|---|---|
class |
UnsupportedAuthenticationMechanismException
Exception thrown when a configured LDAP
Authentication Mechanism is unsupported by the target LDAP server.
|
| Modifier and Type | Class and Description |
|---|---|
class |
ExpiredSessionException
A special case of a StoppedSessionException.
|
class |
InvalidSessionException
Exception thrown when attempting to interact with the system under an established session when that session is considered invalid.
|
class |
SessionException
General security exception attributed to problems during interaction with the system during a session.
|
class |
StoppedSessionException
Exception thrown when attempting to interact with the system under a session that has been stopped.
|
class |
UnknownSessionException
Exception thrown when attempting to interact with the system under the pretense of a particular session (e.g.
|
| Modifier and Type | Class and Description |
|---|---|
class |
ExecutionException
Exception wrapping any potential checked exception thrown when a
Subject executes a
Callable.
|
| Modifier and Type | Class and Description |
|---|---|
class |
DisabledSessionException
Exception thrown if attempting to create a new
Subject
session, but that
Subject's sessions are disabled.
|
| Modifier and Type | Class and Description |
|---|---|
class |
InstantiationException
Runtime exception thrown by the framework when unable to instantiate a Class via reflection.
|
class |
UnavailableConstructorException
Exception thrown when attempting to instantiate a Class via reflection, but a suitable constructor (depending on the number of expected arguments) doesn't exist or cannot be obtained.
|
class |
UnknownClassException
The Shiro framework's
RuntimeException equivalent of the JDK's
ClassNotFoundException, to maintain a RuntimeException paradigm.
|
| Modifier and Type | Method and Description |
|---|---|
void |
Initializable.init()
Initializes this object.
|
static void |
LifecycleUtils.init(Collection
Calls
init for each object in the collection.
|
static void |
LifecycleUtils.init(Initializable
|
static void |
LifecycleUtils.init(Object
|