SecurityManager interface and a default implementation hierarchy for managing all aspects of Shiro's functionality in an application.
See: Description
SecurityManager executes all security operations for
all Subjects (aka users) across a single application.
Subject's
Session to persist that
Subject's internal state.
SubjectDAO is responsible for persisting a Subject instance's internal state such that the Subject instance can be recreated at a later time if necessary.
SubjectFactory is responsible for constructing
Subject instances as needed.
RememberMeManager interface that handles
serialization and
encryption of the remembered user identity.
SecurityManager class hierarchy that delegates all authentication operations to a wrapped
Authenticator instance.
SecurityManager class hierarchy that delegates all authorization (access control) operations to a wrapped
Authorizer instance.
SecurityManager interface, based around a collection of
Realms.
SessionStorageEvaluator that provides reasonable control over if and how Sessions may be used for storing Subject state.
SubjectDAO implementation that stores Subject state in the Subject's Session by default (but this can be disabled - see below).
SubjectFactory implementation that creates
DelegatingSubject instances.
SecurityManager class hierarchy based around a collection of
Realms.
SecurityManager class hierarchy that delegates all
session operations to a wrapped
SessionManager instance.
SecurityManager interface and a default implementation hierarchy for managing all aspects of Shiro's functionality in an application.