shiro默认filter

johnhuster的分享

发布于 2022-03-28 19:10:52

3500

发布于 2022-03-28 19:10:52

文章被收录于专栏：johnhuster

使用过shiro的对下面的配置一定不会陌生，

[urls]

 /logout2=logout
 /login=anon
 /logout=anon
 /unauthorized=anon
 /static/**=anon
 /authenticated=authc
 /role=authc,roles[admin]
  
/permission=authc,perms["user:create"]

但是里面的anon以及authc到底指什么呢，就像spring security一样，shiro在启动时也会创建一些默认filter，下面就是shiro默认filter列表：

Filter Name	Class
anon	org.apache.shiro.web.filter.authc.AnonymousFilter
authc	org.apache.shiro.web.filter.authc.FormAuthenticationFilter
authcBasic	org.apache.shiro.web.filter.authc.BasicHttpAuthenticationFilter
logout	org.apache.shiro.web.filter.authc.LogoutFilter
noSessionCreation	org.apache.shiro.web.filter.session.NoSessionCreationFilter
perms	org.apache.shiro.web.filter.authz.PermissionsAuthorizationFilter
port	org.apache.shiro.web.filter.authz.PortFilter
rest	org.apache.shiro.web.filter.authz.HttpMethodPermissionFilter
roles	org.apache.shiro.web.filter.authz.RolesAuthorizationFilter
ssl	org.apache.shiro.web.filter.authz.SslFilter
user	org.apache.shiro.web.filter.authc.UserFilter