| Class and Description |
|---|
| org.apache.shiro.web.servlet.IniShiroFilter
in 1.2 in favor of using the ShiroFilter
|
| Field and Description |
|---|
| org.apache.shiro.web.mgt.DefaultWebSecurityManager.HTTP_SESSION_MODE |
| org.apache.shiro.web.mgt.DefaultWebSecurityManager.NATIVE_SESSION_MODE |
| Method and Description |
|---|
| org.apache.shiro.web.mgt.DefaultWebSecurityManager.getSessionMode() |
| org.apache.shiro.web.mgt.DefaultWebSubjectFactory.newSubjectInstance(PrincipalCollection, boolean, String, Session, ServletRequest, ServletResponse, SecurityManager)
since 1.2 - override DefaultWebSubjectFactory directly if you need to instantiate a custom Subject class.
|
| org.apache.shiro.web.mgt.DefaultWebSecurityManager.setSessionMode(String)
since 1.2
|
| org.apache.shiro.web.servlet.OncePerRequestFilter.shouldNotFilter(ServletRequest)
in favor of overriding #isEnabled(javax.servlet.ServletRequest, javax.servlet.ServletResponse) for custom behavior. This method will be removed in Shiro 2.0.
|