Details
-
Bug
-
Status: Closed
-
Critical
-
Resolution: Not A Problem
-
None
-
None
Description
I want to use Apache-Shiro API methods in my code for some permissions check. But permission check is not working in ISIS-Shiro environment as it is based on class-based secyrity mechanism.
For ex:
in shiro.ini - I gave permission as below:
site_role = BBY:0540
In the code subject.isPermitted("BBY:541") also returning true.
In non-ISIS environment, this security checking is working fine.
Please help how to solve this issue.
Please find attached files.
Shiro version is 1.2.2 as this is coming via Isis-secuirty-shiro-1.3.0