[SHIRO-345] Annotations support of shiro is not compatible to aop enabled spring mvc controllers. - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 1.2.0
Fix Version/s: None
Component/s: Authorization (access control)
Labels:
- aop
- authorization
- spring

Description

Seems like the way we actualy integrate shiro to work with spring is not compatible with spring's own aop stack. I've verified this issue at least on spring's @Controller beans.

This seems to be due to the fact that we proxy the classes marked with shiro's annotations.

To reproduce this issue:

1. Create a spring beans that is annotated with either @Component or @Controller.
2. Add shiro security annotations to this class.
3. then configure the shiro annotations as advised here: http://shiro.apache.org/spring.html

I can extract a sample maven project that reproduce this issue.

I think that we should add annotations support to spring enabled web app the same way all others spring components does, through spring's own AOP stack.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: DIALLO Mamadou BObo

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 02/Mar/12 00:39

Updated:: 05/Oct/16 20:14

Time Tracking

Estimated:

Remaining:

Logged:

Not Specified