shiro-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From lhazlew...@apache.org
Subject svn commit: r1470266 [8/13] - in /shiro/site: ./ 2010/ 2010/03/ 2010/03/18/ 2010/06/ 2010/06/01/ 2010/09/ 2010/09/14/ 2010/09/20/ 2010/09/24/ 2010/11/ 2010/11/03/ 2011/ 2011/01/ 2011/01/06/ 2011/01/13/ 2011/02/ 2011/02/10/ 2011/02/28/ 2011/03/ 2011/03/...
Date Sun, 21 Apr 2013 05:42:31 GMT
Added: shiro/site/license.html
URL: http://svn.apache.org/viewvc/shiro/site/license.html?rev=1470266&view=auto
==============================================================================
--- shiro/site/license.html (added)
+++ shiro/site/license.html Sun Apr 21 05:42:26 2013
@@ -0,0 +1,206 @@
+<h1><a name="License-TheApacheSoftwareLicense%2CVersion2.0"></a>The Apache Software License, Version 2.0</h1>
+<div class="preformatted panel" style="border-width: 1px;"><div class="preformattedContent panelContent">
+<pre> 
+                                Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+</pre>
+</div></div>
\ No newline at end of file

Added: shiro/site/mailing-lists.html
URL: http://svn.apache.org/viewvc/shiro/site/mailing-lists.html?rev=1470266&view=auto
==============================================================================
--- shiro/site/mailing-lists.html (added)
+++ shiro/site/mailing-lists.html Sun Apr 21 05:42:26 2013
@@ -0,0 +1,10 @@
+<h1><a name="MailingLists-ApacheShiroMailingLists"></a>Apache Shiro Mailing Lists</h1>
+
+<div class="table-wrap">
+<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1" class="confluenceTh"> List Name </th><th colspan="1" rowspan="1" class="confluenceTh"> List Address </th><th colspan="1" rowspan="1" class="confluenceTh"> Subscribe </th><th colspan="1" rowspan="1" class="confluenceTh"> Unsubscribe </th><th colspan="1" rowspan="1" class="confluenceTh"> ASF Archive </th><th colspan="1" rowspan="1" class="confluenceTh"> MarkMail Archive </th><th colspan="1" rowspan="1" class="confluenceTh"> Nabble (Online Forums) </th></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> Shiro User List </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="mailto:user@shiro.apache.org" rel="nofollow">user@shiro.apache.org</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="mailto:user-subscribe@shiro.apache.org" rel="nofollow">Subscribe</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link
 " href="mailto:user-unsubscribe@shiro.apache.org" rel="nofollow">Unsubscribe</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="http://mail-archives.apache.org/mod_mbox/shiro-user/">ASF Archive</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <img align="middle" class="emoticon" src="https://cwiki.apache.org/confluence/images/icons/emoticons/error.gif" height="16" width="16" alt="" border="0">  </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="http://shiro-user.582556.n2.nabble.com/" rel="nofollow">Nabble Forum and Archive</a> </td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> Shiro Developer List </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="mailto:dev@shiro.apache.org" rel="nofollow">dev@shiro.apache.org</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="mailto:dev-subscribe@shiro.apache.org" rel="n
 ofollow">Subscribe</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="mailto:dev-unsubscribe@shiro.apache.org" rel="nofollow">Unsubscribe</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="http://mail-archives.apache.org/mod_mbox/shiro-dev/">ASF Archive</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <img align="middle" class="emoticon" src="https://cwiki.apache.org/confluence/images/icons/emoticons/error.gif" height="16" width="16" alt="" border="0">  </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="http://shiro-developer.582600.n2.nabble.com/" rel="nofollow">Nabble Forum and Archive</a> </td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> Shiro SCM List </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="mailto:commits@shiro.apache.org" rel="nofollow">commits@shiro.apache.org</a> </td><td colspan="1" rows
 pan="1" class="confluenceTd"> <a class="external-link" href="mailto:commits-subscribe@shiro.apache.org" rel="nofollow">Subscribe</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="mailto:commits-unsubscribe@shiro.apache.org" rel="nofollow">Unsubscribe</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <a class="external-link" href="http://mail-archives.apache.org/mod_mbox/shiro-commits/">ASF Archive</a> </td><td colspan="1" rowspan="1" class="confluenceTd"> <img align="middle" class="emoticon" src="https://cwiki.apache.org/confluence/images/icons/emoticons/error.gif" height="16" width="16" alt="" border="0"> </td><td colspan="1" rowspan="1" class="confluenceTd"> <img align="middle" class="emoticon" src="https://cwiki.apache.org/confluence/images/icons/emoticons/error.gif" height="16" width="16" alt="" border="0"> </td></tr></tbody></table>
+</div>
+
+
+<h3><a name="MailingLists-DiscussionForums"></a>Discussion Forums</h3>
+
+<p>If you prefer you could use our discussion <a href="forums.html" title="Forums">Forums</a> which are sync'd with the above mailing lists.</p>
\ No newline at end of file

Added: shiro/site/navigation.html
URL: http://svn.apache.org/viewvc/shiro/site/navigation.html?rev=1470266&view=auto
==============================================================================
--- shiro/site/navigation.html (added)
+++ shiro/site/navigation.html Sun Apr 21 05:42:26 2013
@@ -0,0 +1,21 @@
+<ul id="navlist" class="sf-menu rc"><li class="current rc"><a href="index.html" title="Index">Home</a></li><li><a href="download.html" title="Download">Download</a></li><li>
+
+<p><a href="about.html" title="About">About</a></p>
+
+<ul><li><a href="what-is-shiro.html" title="What is Shiro">What is Shiro</a></li><li><a href="features.html" title="Features">Features</a></li><li><a href="news.html" title="News">News</a></li><li><a href="events.html" title="Events">Events</a></li><li><a href="license.html" title="License">License</a></li></ul>
+</li><li>
+
+<p><a href="documentation.html" title="Documentation">Documentation</a></p>
+
+<ul><li><a href="10-minute-tutorial.html" title="10 Minute Tutorial">10 Minute Tutorial</a></li><li><a href="guides.html" title="Guides">Guides</a></li><li><a href="reference.html" title="Reference">Reference Manual</a></li><li><a href="articles.html" title="Articles">Articles</a></li><li><a class="external-link" href="http://incubator.apache.org/shiro/static/current/apidocs">API</a></li></ul>
+</li><li>
+
+<p><a href="contribute.html" title="Contribute">Contribute</a></p>
+
+<ul><li><a href="how-to-contribute.html" title="How to Contribute">How to Contribute</a></li><li><a class="external-link" href="http://www.apache.org/foundation/sponsorship.html">Donate to ASF</a></li><li><a href="developer-resources.html" title="Developer Resources">Developer Resources</a></li></ul>
+</li><li>
+
+<p><a href="support.html" title="Support">Community Support</a></p>
+
+<ul><li><a href="mailing-lists.html" title="Mailing Lists">Mailing Lists</a></li><li><a href="forums.html" title="Forums">Forums</a></li><li><a href="issues.html" title="Issues">Issue &amp; Bug Tracking</a></li></ul>
+</li><li><a href="commercial-support.html" title="Commercial Support">Commercial Support</a></li></ul>

Added: shiro/site/news.html
URL: http://svn.apache.org/viewvc/shiro/site/news.html?rev=1470266&view=auto
==============================================================================
--- shiro/site/news.html (added)
+++ shiro/site/news.html Sun Apr 21 05:42:26 2013
@@ -0,0 +1,490 @@
+<script type="text/javascript">
+    //Swap the blog title with the author information (not sure why Confluence orders it this way):
+    jQuery(function() {
+        jQuery("a.blogHeading").each(function() {
+            jQuery(this).prependTo(jQuery(this).parent());
+        });
+    });
+</script>
+
+<h1><a name="News-ApacheShiroNews"></a>Apache Shiro News</h1>
+
+<p>Stay up to date with the latest news on the Apache Shiro Security Framework</p>
+
+    
+
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on Jul 29, 2012</div>
+                <a class="blogHeading" href="2012/07/29/apache-shiro-121-released.html">Apache Shiro 1.2.1 Released</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>Dear Apache Shiro Community,</p>
+
+<p>The Shiro team is pleased to announce the release of Apache Shiro version 1.2.1.  This is the first bug fix point release after 1.2.0.</p>
+
+<p>This release includes <a class="external-link" href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310950&amp;version=12319511">11 bug fixes</a> since the 1.2.0 release and is available for <a href="download.html" title="Download">Download</a> now.</p>
+
+<p>All binaries (.jars) are available in Maven Central already.  Please note that the Apache mirrors are still updating to reflect the source distribution, but some mirrors may not be updated yet.  If a mirror download link does not work, please try another or wait another 12 to 24 hours.</p>
+
+<p>For more information on Shiro 1.2, please read the "<a class="external-link" href="http://www.stormpath.com/blog/whats-new-apache-shiro-12" rel="nofollow">What's new in Apache Shiro 1.2?</a>" article or the previous <a class="external-link" href="2012/01/24/apache-shiro-120-released.html">1.2 release announcement</a>.</p>
+
+<p>Enjoy!</p>
+
+<p>The Apache Shiro Team</p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=29689097">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on Mar 13, 2012</div>
+                <a class="blogHeading" href="/confluence/pages/viewpage.action?pageId=27840925">What's New in Apache Shiro 1.2?</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>Here's an article covering some of the main features and enhancements in Apache Shiro 1.2:</p>
+
+<p><a class="external-link" href="http://www.stormpath.com/blog/2012/03/12/whats-new-in-apache-shiro-12.html" rel="nofollow">http://www.stormpath.com/blog/2012/03/12/whats-new-in-apache-shiro-12.html</a></p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=27840925">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on Jan 24, 2012</div>
+                <a class="blogHeading" href="2012/01/24/apache-shiro-120-released.html">Apache Shiro 1.2.0 Released!</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p><font color="#222222">Dear Apache Shiro Community,</font></p>
+
+<p><font color="#222222">The Shiro team is pleased to announce the release of Apache Shiro version 1.2.0!</font></p>
+
+<p><font color="#222222">This release includes a number of bug fixes and new features since the&#160;</font><font color="#222222">1.1.0 release. &#160;The 1.2.0 release is available from</font> <font color="#222222"><a href="download.html" title="Download">the Download page</a></font><font color="#222222">.</font></p>
+
+<p><font color="#222222">All binaries (.jars) are available in Maven Central already. &#160;Please&#160;</font><font color="#222222">note that the Apache mirrors are still updating to reflect the source&#160;</font><font color="#222222">distribution, but some mirrors may not be updated yet. &#160;If a mirror&#160;</font><font color="#222222">download link does not work, please try another or wait another 12 to&#160;</font><font color="#222222">24 hours.</font></p>
+
+<h3><a name="ApacheShiro1.2.0Released%21-NewFeatures"></a>New Features</h3>
+
+<ul><li>The ability to disable sessions per filter chain or entirely for an&#160;application.</li><li>Servlet Context Listener initialization in web apps (to allow&#160;components to utilize Shiro before Filter initialization)</li><li>A command line program to securely hash passwords (or any url, file&#160;or stream input for that matter).</li><li>New secure password hash formats that adhere to Modular Crypt Format&#160;conventions. &#160;These secure password hashes can be computed with the&#160;above named command line program and saved in text config (e.g.&#160;shiro.ini) directly. &#160;Plaintext passwords should never be stored. &#160;For&#160;those familiar with the Apache HTTPD passwd program, this achieves the&#160;same benefits.</li><li>A new LogoutFilter, as many apps don't need to show a view during&#160;logout (just logout and redirect to some known location).</li><li>Shiro filters can be enabled or disabled without removing them from&#160;the filter chain - usef
 ul in development (e.g. turn ssl requirement&#160;off in dev, but keep it on in production).</li><li><font color="#222222">A lot of work has gone into making secure password hash storage and&#160;</font><font color="#222222">comparison a much simpler task in Shiro, focused around the new&#160;</font><font color="#222222">concept of a PasswordService. &#160;You can use a PasswordService directly&#160;</font><font color="#222222">in your application code to hash passwords securely. &#160;You can then&#160;</font><font color="#222222">configure a PasswordMatcher on your Realm(s) to use the same&#160;</font><font color="#222222">PasswordService for password comparisons. &#160;See the PasswordService&#160;</font><font color="#222222">JavaDoc for example .ini configuration:</font>
+	<ul><li><font color="#222222">PasswordService:&#160;</font><a class="external-link" href="static/current/apidocs/org/apache/shiro/authc/credential/PasswordService.html">static/current/apidocs/org/apache/shiro/authc/credential/PasswordService.html</a></li><li><font color="#222222">PasswordMatcher:&#160;</font><a class="external-link" href="static/current/apidocs/org/apache/shiro/authc/credential/PasswordMatcher.html">static/current/apidocs/org/apache/shiro/authc/credential/PasswordMatcher.html</a></li></ul>
+	</li></ul>
+
+
+<p><font color="#222222">More complete PasswordService and related config documentation will be&#160;</font><font color="#222222">added to the Shiro website in the next few days - it was better to&#160;</font><font color="#222222">release now for the many who are waiting on the release, and follow up&#160;</font><font color="#222222">with this part of the documentation shortly.</font></p>
+<ul><li><font color="#222222">Three new 'support' modules:</font>
+	<ul><li><font color="#222222">Apache Karaf features (shiro-features-1.2.0.jar)</font></li><li><font color="#222222">Google Guice:&#160;</font><a class="external-link" href="guice.html">guice.html</a></li><li><font color="#222222">Jasig CAS:&#160;</font><a class="external-link" href="cas.html">cas.html</a></li></ul>
+	</li></ul>
+
+
+<p><font color="#222222">And even more new features! &#160;See the 'Resolved Issues' below for a&#160;</font><font color="#222222">complete list.</font></p>
+
+<h3><a name="ApacheShiro1.2.0Released%21-Backwardsincompatibleorpotentialbreakingchanges"></a>Backwards-incompatible or potential breaking changes</h3>
+
+<p><font color="#222222">There are only a few small cases where breakage could occur - please&#160;</font><font color="#222222">view the release notes to ensure you mitigate any potential breaking&#160;</font><font color="#222222">change - particularly if you are using the SecureRandomNumberGenerator</font><br clear="none">
+<font color="#222222">or Shiro's Block Cipher Services (AES, Blowfish):</font></p>
+
+<p><a class="external-link" href="https://svn.apache.org/repos/asf/shiro/tags/shiro-root-1.2.0/RELEASE-NOTES">https://svn.apache.org/repos/asf/shiro/tags/shiro-root-1.2.0/RELEASE-NOTES</a></p>
+
+<h3><a name="ApacheShiro1.2.0Released%21-ResolvedIssues"></a>Resolved Issues</h3>
+
+<p><font color="#222222">Jira resolved issue report:</font></p>
+
+<p><a class="external-link" href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310950&amp;version=12315478">https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310950&amp;version=12315478</a></p>
+
+<p><font color="#222222">Enjoy!</font></p>
+
+
+
+<p><font color="#222222">The Apache Shiro</font> Team</p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=27836513">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on Jun 30, 2011</div>
+                <a class="blogHeading" href="2011/06/30/apache-shiro-login-demo.html">Apache Shiro Login Demo</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p><a class="external-link" href="http://raibledesigns.com/" rel="nofollow">Matt Raible</a> has posted a really nice blog article and video demonstrating a login use case with Apache Shiro.  Check out the <a class="external-link" href="http://raibledesigns.com/rd/entry/java_web_application_security_part2" rel="nofollow">Java Web Application Security - Part III: Apache Shiro Login Demo</a> blog post and the video:</p>
+
+
+<object width="480" height="390"><param valuetype="data" name="movie" value="http://www.youtube.com/v/4LD4mF5ex2U?version=3&amp;hl=en_US&amp;rel=0"><param valuetype="data" name="allowFullScreen" value="true"><param valuetype="data" name="allowscriptaccess" value="always"><embed src="http://www.youtube.com/v/4LD4mF5ex2U?version=3&amp;hl=en_US&amp;rel=0" type="application/x-shockwave-flash" width="480" height="390" allowscriptaccess="always" allowfullscreen="true"></embed></object>
+
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=27820811">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on May 24, 2011</div>
+                <a class="blogHeading" href="2011/05/24/the-new-rbac-resource-based-access-control.html">The New RBAC - Resource-Based Access Control</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>Hi Shiro community,</p>
+
+<p>The following article helps explain the differences in role-based vs resource-based access control and why Shiro's permission construct (which is based on resources) can be much better for an application:</p>
+
+<p><a class="external-link" href="http://www.katasoft.com/blog/2011/05/09/new-rbac-resource-based-access-control" rel="nofollow">The New RBAC: Resource-Based Access Control</a></p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=26120714">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on Mar 14, 2011</div>
+                <a class="blogHeading" href="2011/03/14/infoq-article-on-apache-shiro.html">InfoQ article on Apache Shiro</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p><a class="external-link" href="http://www.infoq.com/articles/apache-shiro" rel="nofollow">http://www.infoq.com/articles/apache-shiro</a></p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=25204519">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~skipshot4">
+               <img class="userLogo logo" src="https://cwiki.apache.org/confluence/images/icons/profilepics/default.gif" alt="User icon: skipshot4" title="skipshot4">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~skipshot4">Alex Salazar</a> posted on Feb 28, 2011</div>
+                <a class="blogHeading" href="2011/02/28/java-authorization-guide-with-apache-shiro-posted.html">Java Authorization Guide with Apache Shiro posted</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>In our effort to improve the documentation you need to get started with Shiro, we've written a quick <a href="java-authorization-guide.html" title="Java Authorization Guide">Java Authorization Guide</a> for your review.  Check out and tell us what you think.  And if you haven't already, check out our previous post, the <a href="java-authentication-guide.html" title="Java Authentication Guide">Java Authentication Guide</a>.</p>
+
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=25203368">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~skipshot4">
+               <img class="userLogo logo" src="https://cwiki.apache.org/confluence/images/icons/profilepics/default.gif" alt="User icon: skipshot4" title="skipshot4">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~skipshot4">Alex Salazar</a> posted on Feb 09, 2011</div>
+                <a class="blogHeading" href="2011/02/10/apache-shiro-integration-for-grails-113-released.html">Apache Shiro Integration for Grails 1.1.3 released</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>Secure your Grails application quickly and easily using the Apache Shiro security framework. Although easy to get started with, this framework gives you a great deal of flexibility and will support your application as it grows.</p>
+
+<p><a class="external-link" href="http://grails.org/plugin/shiro" rel="nofollow">http://grails.org/plugin/shiro</a></p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=25201291">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~skipshot4">
+               <img class="userLogo logo" src="https://cwiki.apache.org/confluence/images/icons/profilepics/default.gif" alt="User icon: skipshot4" title="skipshot4">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~skipshot4">Alex Salazar</a> posted on Jan 13, 2011</div>
+                <a class="blogHeading" href="2011/01/13/apache-shiro-support-for-mule.html">Apache Shiro Support for Mule</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>Mule now has integration with Apache Shiro.  Thanks to Dan Diephouse at <a class="external-link" href="http://www.mulesoft.org" rel="nofollow">MuleSoft</a> for the great blog post.  </p>
+
+<p><a class="external-link" href="http://blogs.mulesoft.org/apache-shiro-support-for-mule/" rel="nofollow">http://blogs.mulesoft.org/apache-shiro-support-for-mule/</a></p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=24193421">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~skipshot4">
+               <img class="userLogo logo" src="https://cwiki.apache.org/confluence/images/icons/profilepics/default.gif" alt="User icon: skipshot4" title="skipshot4">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~skipshot4">Alex Salazar</a> posted on Jan 06, 2011</div>
+                <a class="blogHeading" href="2011/01/06/apache-shiro-video-and-slide-from-sf-jug-presentation.html">Apache Shiro Video and Slide from SF JUG Presentation</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>Check out the video from the San Francisco Java User Group presentation on Apache Shiro.</p>
+
+<h2><a name="ApacheShiroVideoandSlidefromSFJUGPresentation-Video"></a>Video</h2>
+
+<object width="640" height="385"><param valuetype="data" name="movie" value="http://www.youtube.com/v/5ZepGFzYHpE?fs=1&amp;hl=en_US"><param valuetype="data" name="allowFullScreen" value="true"><param valuetype="data" name="allowscriptaccess" value="always"><embed src="http://www.youtube.com/v/5ZepGFzYHpE?fs=1&amp;hl=en_US" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="640" height="385"></embed></object>
+
+
+<h2><a name="ApacheShiroVideoandSlidefromSFJUGPresentation-Slides"></a>Slides</h2>
+
+<object id="__sse5521015" width="425" height="355"><param valuetype="data" name="movie" value="http://static.slidesharecdn.com/swf/ssplayer2.swf?doc=apacheshiropresentation-20101013-101021174352-phpapp01&amp;stripped_title=simple-application&amp;userName=marakana"><param valuetype="data" name="allowFullScreen" value="true"><param valuetype="data" name="allowScriptAccess" value="always"><embed name="__sse5521015" src="http://static.slidesharecdn.com/swf/ssplayer2.swf?doc=apacheshiropresentation-20101013-101021174352-phpapp01&amp;stripped_title=simple-application&amp;userName=marakana" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="425" height="355"></embed></object>
+
+
+<p>Courtesy of Aleksandar and Max at the <a class="external-link" href="http://www.sfjava.org/" rel="nofollow">SF JUG</a></p>
+
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=24192498">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on Nov 03, 2010</div>
+                <a class="blogHeading" href="2010/11/03/apache-shiro-110-released.html">Apache Shiro 1.1.0 Released</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>Dear Apache Shiro Community,</p>
+
+<p>We are proud and excited to offer Apache Shiro's first release as an Apache Top Level Project, Apache Shiro version 1.1.0.</p>
+
+<p>This release includes a number of bug fixes, new features and one important security vulnerability fix - it is recommended that users upgrade to 1.1.0 as soon as possible.</p>
+
+<p>Version 1.1.0 is available immediately for download <a href="download.html" title="Download">here</a> accompanied by <a href="documentation.html" title="Documentation">associated documentation</a> and <a class="external-link" href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12314742&amp;styleName=Html&amp;projectId=12310950">Release Notes</a>.</p>
+
+<p>All binaries are available in Maven Central already.  Please note that most of the Apache mirrors have been updated to reflect the source distribution, but some mirrors may not be updated yet.  If a mirror download link does not work, please try another or wait another 12 to 24 hours.</p>
+
+<p>Enjoy!</p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=24185250">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on Sep 24, 2010</div>
+                <a class="blogHeading" href="2010/09/24/apache-shiro-becomes-an-apache-top-level-project.html">Apache Shiro becomes an Apache Top Level Project</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>On Wednesday, September 22nd 2010, the Apache Software Foundation Board voted unanimously to accept Apache Shiro's graduation out of the Incubator and to become a Apache Top Level Project.</p>
+
+<p>Many thanks to the entire community for the continued growth and support, and especially to our Mentors, for helping us navigate the project through the incubation process.  Everything is much appreciated and it has been well worth it.</p>
+
+<p>Next steps:  It will take us a bit of time to migrate our infrastructure to non-Incubator resources (shiro.apache.org subdomain, Subversion move, etc), so please stay tuned.  Hopefully that can be done in the next two weeks.  Shortly thereafter, we hope to release Shiro 1.1.</p>
+
+<p>Thanks again to all, and please keep contributing to the project and the mailing lists to continually better the project for everyone!</p>
+
+<p>Best regards,</p>
+
+<p>Les</p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=23338922">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on Sep 20, 2010</div>
+                <a class="blogHeading" href="2010/09/20/san-francisco-jug-presentation.html">San Francisco JUG presentation</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>On 12 October 2010 at 6:30 pm PDT, Les Hazlewood will present <a class="external-link" href="http://www.sfjava.org/calendar/13539905/" rel="nofollow">Super Simple Application Security with Apache Shiro</a> to the San Francisco Java User Group.  Please RSVP if you wish to attend - seats are limited!</p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=23338543">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on Sep 14, 2010</div>
+                <a class="blogHeading" href="2010/09/14/ibm-developerworks-introduction-to-apache-shiro.html">IBM DeveloperWorks - Introduction to Apache Shiro</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>Nathan Good wrote <a class="external-link" href="http://www.ibm.com/developerworks/web/library/wa-apacheshiro/" rel="nofollow">an article</a> introducing some of Apache Shiro's capabilities.  Thanks Nathan!</p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=23337787">Edit</a>
+                    
+                    </div>
+    </div>
+    
+        
+<div class="blog-post-listing">
+            <div class="logo-heading-block">
+            <span class="logoBlock">
+                <a class="userLogoLink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">
+               <img class="userLogo logo" src="news.userimage//confluence/download/attachments/87901/lhazlewood-43904-pp-les_devnexus_speaking_350x350.jpg?version=1&amp;modificationDate=1327433703000" alt="User icon: lhazlewood" title="lhazlewood">
+           </a>            </span>
+            <span class="blogHeading">
+                </span><div class="page-metadata not-personal"><a class="url fn confluence-userlink" href="https://cwiki.apache.org/confluence/display/~lhazlewood">Les Hazlewood</a> posted on Jun 01, 2010</div>
+                <a class="blogHeading" href="2010/06/01/sdforum-java-sig-apache-shiro-presentation.html">SDForum Java SIG Apache Shiro Presentation</a>
+            
+        </div>
+    
+    <div class="wiki-content">
+        <p>Tonight, 1 June 2010, Les Hazlewood <a class="external-link" href="http://www.sdforum.org/index.cfm?fuseaction=Calendar.eventDetail&amp;eventID=13671&amp;pageId=471" rel="nofollow">will present</a> Apache Shiro to the SDForum Java SIG in Palo Alto, California.  Please come if you can!</p>
+    </div>
+    
+            
+        <div class="endsection">
+        
+            <a href="/confluence/pages/editblogpost.action?pageId=21791855">Edit</a>
+                    
+                    </div>
+    </div>

Added: shiro/site/overview.html
URL: http://svn.apache.org/viewvc/shiro/site/overview.html?rev=1470266&view=auto
==============================================================================
--- shiro/site/overview.html (added)
+++ shiro/site/overview.html Sun Apr 21 05:42:26 2013
@@ -0,0 +1,106 @@
+<h1><a name="Overview-OverviewofApacheShiro"></a>Overview of Apache Shiro</h1>
+
+<h2><a name="Overview-Introduction"></a>Introduction</h2>
+
+<p>Apache Shiro is a powerful and flexible open-source security framework that cleanly handles authentication, authorization, enterprise session management and cryptography.</p>
+
+<p>Apache Shiro's first and foremost goal is to be easy to use and understand.  Security can be very complex at times, even painful, but it doesn't have to be.  A framework should mask complexities where possible and expose a clean and intuitive API that simplifies the developer's effort to make their application(s) secure.</p>
+
+<p>Here are some things that you can do with Apache Shiro:</p>
+
+<ul><li>Authenticate a user to verify their identity</li><li>Perform access control for a user, such as:
+	<ul><li>Determine if a user is assigned a certain security role or not</li><li>Determine if a user is permitted to do something or not</li></ul>
+	</li><li>Use a Session API in any environment, even without web or EJB containers.</li><li>React to events during authentication, access control, or during a session's lifetime.</li><li>Aggregate 1 or more data sources of user security data and present this all as a single composite user 'view'.</li><li>Enable Single Sign On (SSO) functionality</li><li>Enable 'Remember Me' services for user association without login<br clear="none">
+...<br clear="none">
+and much more - all integrated into a cohesive easy-to-use API.</li></ul>
+
+
+<p>Shiro attempts to achieve these goals for all application environments - from the simplest command line application to the largest enterprise applications, without forcing dependencies on other 3rd party frameworks, containers, or application servers.  Of course the project aims to integrate into these environments wherever possible, but it could be used out-of-the-box in any environment.</p>
+
+<h2><a name="Overview-Features"></a>Features</h2>
+
+<p>Apache Shiro is a comprehensive application security framework with many features.  The following diagram shows where Shiro focuses its energy, and this reference manual will be organized similarly:</p>
+
+<p><br clear="none" class="atl-forced-newline">
+<br clear="none" class="atl-forced-newline">
+<span class="image-wrap" style="display: block; text-align: center"><img src="overview.data/ShiroFeatures.png" style="border: 0px solid black"></span>
+<br clear="none" class="atl-forced-newline">
+<br clear="none" class="atl-forced-newline"></p>
+
+<p>Shiro targets what the Shiro development team calls "the four cornerstones of application security" - Authentication, Authorization, Session Management, and Cryptography:</p>
+
+<ul><li><b>Authentication:</b> Sometimes referred to as 'login', this is the act of proving a user is who they say they are.
+<br clear="none" class="atl-forced-newline">
+<br clear="none" class="atl-forced-newline"></li><li><b>Authorization:</b> The process of access control, i.e. determining 'who' has access to 'what'.
+<br clear="none" class="atl-forced-newline">
+<br clear="none" class="atl-forced-newline"></li><li><b>Session Management:</b> Managing user-specific sessions, even in non-web or EJB applications.
+<br clear="none" class="atl-forced-newline">
+<br clear="none" class="atl-forced-newline"></li><li><b>Cryptography:</b> Keeping data secure using cryptographic algorithms while still being easy to use.</li></ul>
+
+
+<p>There are also additional features to support and reinforce these concerns in different application environments, especially:</p>
+
+<ul><li>Web Support: Shiro's web support APIs help easily secure web applications.</li><li>Caching: Caching is a first-tier citizen in Apache Shiro's API to ensure that security operations remain fast and efficient.</li><li>Concurrency: Apache Shiro supports multi-threaded applications with its concurrency features.</li><li>Testing: Test support exists to help you write unit and integration tests and ensure your code will be secured as expected.</li><li>"Run As": A feature that allows users to assume the identity of another user (if they are allowed), sometimes useful in administrative scenarios.</li><li>"Remember Me": Remember users' identities across sessions so they only need to log in when mandatory.</li></ul>
+
+
+<p></p>
+
+<h2><a name="Overview-AFirstLookatApacheShiro"></a>A First Look at Apache Shiro</h2>
+
+<p>Apache Shiro's design goals are to simplify application security by being intuitive and easy to use.  Shiro's core design models how most people think about application security - in the context of someone (or something) interacting with an application.</p>
+
+<p>Software applications are usually designed based on user stories.  That is, you'll often design user interfaces or service APIs based on how a user would (or should) interact with the software.  For example, you might say, "If the user interacting with my application is logged in, I will show them a button they can click to view their account information.  If they are not logged in, I will show a sign-up button."  </p>
+
+<p>This example statement indicates that applications are largely written to satisfy user requirements and needs.  Even if the 'user' is another software system and not a human being, you still write code to reflect behavior based on who (or what) is currently interacting with your software.</p>
+
+<p>Shiro largely reflects these concepts in its own design. By matching what is already intuitive for software developers, Apache Shiro remains intuitive and easy to use in practically any application.</p>
+
+<h3><a name="Overview-BasicDesign"></a>Basic Design</h3>
+
+<p>Shiro's architecture has 3 primary concepts: the <tt>Subject</tt>, <tt>SecurityManager</tt> and <tt>Realm</tt> s.  The following diagram is a high-level overview of how these concepts interact, and we'll cover each concept below:</p>
+
+<p><br clear="none" class="atl-forced-newline">
+<br clear="none" class="atl-forced-newline">
+<span class="image-wrap" style="display: block; text-align: center"><img src="overview.data/ShiroBasicArchitecture.png" style="border: 0px solid black"></span>
+<br clear="none" class="atl-forced-newline">
+<br clear="none" class="atl-forced-newline"></p>
+
+<h4><a name="Overview-Subject"></a>Subject</h4>
+
+<p>The <tt>Subject</tt> is essentially a security specific 'view' of the the currently executing user.  Notice that it is not actually named <em>User</em> however.  The name <em>Subject</em> was chosen for two reasons: </p>
+
+<ol><li>The word 'User' often implies a human being in many software systems.  But sometimes the 'currently executing user' isn't a human being at all - maybe it is a 3rd-party process or remote server or daemon account.  The word 'Subject' is more general and can mean 'the entity interacting with the software'.</li><li>The word 'Subject', because it is a general-purpose concept, is the actual term most often used in the security world.  We retain that definition to be consistent.</li></ol>
+
+
+<p>You can acquire the current <tt>Subject</tt> anywhere in your application code as shown here:</p>
+
+<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
+<pre class="code-java">
+<span class="code-keyword">import</span> org.apache.shiro.subject.Subject;
+<span class="code-keyword">import</span> org.apache.shiro.SecurityUtils;
+...
+Subject currentUser = SecurityUtils.getSubject();
+</pre>
+</div></div>
+
+<p>Once you have a <tt>Subject</tt> instance, you immediately have access to 90% of everything you would ever need to do to perform security for that Subject, such as login and logout, perform role and permission checks, access their session, and more - but more about this later.  The most important thing to know is that the <tt>Subject</tt> is your 'security-specific view' of an application 'user' and that you can essentially access this anywhere in application code to perform whatever security operations you need. </p>
+
+<h4><a name="Overview-TheSecurityManager"></a>The SecurityManager</h4>
+
+<p>While application developers almost exclusively interact with <tt>Subject</tt> instances in their code, Subjects have a 'behind the scenes' counterpart that makes them work - the Shiro <tt>SecurityManager</tt> (note this is <em>not</em> the same thing as the <tt>java.lang.SecurityManager</tt>).</p>
+
+<p>While a <tt>Subject</tt> instance represents security information and operations for a single user, the Shiro <tt>SecurityManager</tt> manages security operations for <em>all</em> users.  It is essentially the 'man behind the curtain' that manages all features in Shiro for all Subjects.  Each software application that uses Shiro typically has one and only one <tt>SecurityManager</tt> instance.</p>
+
+<p>The <tt>SecurityManager</tt> is the heart of Shiro&#8217;s architecture and acts as a sort of 'umbrella&#8217; object that coordinates internally nested security components that form an object graph. However, once the SecurityManager and its internal object graph is configured, it is usually left alone and application developers spend almost all of their time with the <tt>Subject</tt> API.</p>
+
+<p>We will talk about the <tt>SecurityManager</tt> in detail later on, but it is important to realize that when you interact with a <tt>Subject</tt>, it is really the <tt>SecurityManager</tt> behind the scenes that does all the heavy lifting for any <tt>Subject</tt> security operation.  This is reflected in the basic flow diagram above.</p>
+
+<h4><a name="Overview-Realms"></a>Realms</h4>
+
+<p>The third and final core concept in Shiro is that of a Realm. A Realm acts as the &#8216;bridge&#8217; or &#8216;connector&#8217; between Shiro and your application&#8217;s security data. That is, when it comes time to actually interact with security-related data like user accounts to perform authentication (login) and authorization (access control), Shiro looks up many of these things from one or more Realms configured for an application.</p>
+
+<p>In this sense a Realm is essentially a security-specific <a class="external-link" href="http://en.wikipedia.org/wiki/Data_access_object" rel="nofollow">DAO</a>: it encapsulates connection details for data sources and makes the associated data available to Shiro as needed. When configuring Shiro, you must specify at least one Realm to use for authentication and/or authorization. More than one Realm may be configured, but at least one is required.</p>
+
+<p>Shiro provides out-of-the-box Realms to connect to a number of security data sources (aka directories) such as LDAP, relational databases (JDBC), text configuration sources like INI and properties files, and more. You can plug-in your own Realm implementations to represent custom data sources if the default Realms do not meet your needs.</p>
+
+<p>Like other internal components, the Shiro <tt>SecurityManager</tt> manages how Realms are used to acquire security data and then represented as <tt>Subject</tt> instances.</p>
\ No newline at end of file

Added: shiro/site/performing-a-release.html
URL: http://svn.apache.org/viewvc/shiro/site/performing-a-release.html?rev=1470266&view=auto
==============================================================================
--- shiro/site/performing-a-release.html (added)
+++ shiro/site/performing-a-release.html Sun Apr 21 05:42:26 2013
@@ -0,0 +1,98 @@
+<h2><a name="PerformingaRelease-CreatetheReleaseandVote"></a>Create the Release and Vote</h2>
+
+<ol><li>Ensure you are using JDK 1.6 (1.7 will not work) and Maven 3.0.3 (or later) for the following steps.</li><li>Run Apache RAT to ensure that we're Apache compliant:
+<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
+<pre class="code-java">
+&gt; mvn apache-rat:check
+</pre>
+</div></div>
+<p>Resolve any errors as necessary (usually amounts to placing the ASF license header at the top of files).</p></li><li>Execute the maven commands below to go through the release process.  If there are any errors that you can't resolve, contact the <tt>dev@shiro.apache.org</tt> mailing list.
+<div class="panelMacro"><table class="infoMacro"><colgroup span="1"><col span="1" width="24"><col span="1"></colgroup><tr><td colspan="1" rowspan="1" valign="top"><img align="middle" src="https://cwiki.apache.org/confluence/images/icons/emoticons/information.gif" width="16" height="16" alt="" border="0"></td><td colspan="1" rowspan="1"><b>GPG Installed</b><br clear="none">This release process requires the <tt>gpg</tt> binary to be in your command $PATH and your code signing key configured for your account.</td></tr></table></div>
+<p>Commands:</p>
+<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
+<pre class="code-java">
+&gt; mvn clean install -Pdocs,apache-release
+&gt; mvn release:prepare -DdryRun=<span class="code-keyword">true</span>
+&gt; mvn deploy -Pdocs
+&gt; mvn release:clean
+&gt; mvn release:prepare -Dusername=YOUR_SVN_USERNAME -Dpassword=YOUR_SVN_PASSWORD
+&gt; mvn release:perform -Dusername=YOUR_SVN_USERNAME -Dpassword=YOUR_SVN_PASSWORD
+</pre>
+</div></div></li><li>Log in to <a class="external-link" href="https://repository.apache.org">https://repository.apache.org</a>.  Navigate to "Staging Repositories" (on the left nav panel).  Find the repository starting with 'org.apache.shiro' and <tt>close</tt> it.</li><li>Send out the VOTE email to the <tt>dev@shiro.apache.org</tt> mailing list.  Here's a good template:
+<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
+<pre class="code-java">
+This is a call to vote in favor of releasing Apache Shiro version 1.2.0.
+
+The 59 issues solved <span class="code-keyword">for</span> 1.2.0:
+
+https:<span class="code-comment">//issues.apache.org/jira/secure/IssueNavigator!executeAdvanced.jspa?jqlQuery=project+%3D+SHIRO+AND+fixVersion+%3D+%221.2.0%22+AND+%28status+%21%3D+Open+and+status+%21%3D+%22In+Progress%22%29+ORDER+BY+priority+DESC&amp;runQuery=<span class="code-keyword">true</span>&amp;clear=<span class="code-keyword">true</span>
+</span>
+The tag to be voted upon:
+&lt;SVN_URL_OF_THE_RELEASE_TAG&gt; (e.g. https:<span class="code-comment">//svn.apache.org/repos/asf/shiro/tags/1.2.0)
+</span>
+Staging repo <span class="code-keyword">for</span> binaries:
+&lt;URL_OF_THE_CLOSED_REPO_FROM_ABOVE_STEP&gt; (e.g. https:<span class="code-comment">//repository.apache.org/content/repositories/orgapacheshiro-92/)
+</span>
+Project website (just <span class="code-keyword">for</span> informational purposes, not to be voted upon):
+http:<span class="code-comment">//shiro.apache.org/
+</span>and maven <span class="code-keyword">static</span> generated site (<span class="code-keyword">for</span> informational purposes, not to be voted upon):
+people.apache.org:/www/shiro.apache.org/<span class="code-keyword">static</span>/1.2.0 or http:<span class="code-comment">//shiro.apache.org/<span class="code-keyword">static</span>/1.2.0 (once it propagates to web servers)
+</span>
+Guide to testing staged releases:
+http:<span class="code-comment">//maven.apache.org/guides/development/guide-testing-releases.html
+</span>
+Vote open <span class="code-keyword">for</span> 72 hours. Please <span class="code-keyword">do</span> examine the source and binaries before voting.
+
+[ ] +1
+[ ] +0
+[ ] -1 (please include reasoning)
+</pre>
+</div></div></li></ol>
+
+
+<h2><a name="PerformingaRelease-AfteraSuccessfulVote"></a>After a Successful Vote</h2>
+
+<ol><li>Update the <a class="external-link" href="http://svn.apache.org/repos/asf/shiro/trunk/shiro.doap.rdf">Shiro DOAP file in subversion</a> to include another release information chunk (<em>after</em> the other similar chunks):
+<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
+<pre class="code-xml">
+<span class="code-tag">&lt;release&gt;</span>
+    <span class="code-tag">&lt;Version&gt;</span>
+        <span class="code-tag">&lt;name&gt;</span>Apache Shiro VERSION<span class="code-tag">&lt;/name&gt;</span>
+        <span class="code-tag">&lt;created&gt;</span>RELEASE_DATE<span class="code-tag">&lt;/created&gt;</span>
+        <span class="code-tag">&lt;revision&gt;</span>VERSION<span class="code-tag">&lt;/revision&gt;</span>
+    <span class="code-tag">&lt;/Version&gt;</span>
+<span class="code-tag">&lt;/release&gt;</span>
+</pre>
+</div></div>
+<p><br clear="none" class="atl-forced-newline">
+With the appropriate <tt>RELEASE_DATE</tt> (e.g. 2011-10-01) and <tt>VERSION</tt> (e.g. 1.1.0).  Save and commit the file to SVN.
+<br clear="none" class="atl-forced-newline">
+<br clear="none" class="atl-forced-newline"></p></li><li>Put the distribution on the ASF web servers
+	<ol><li>SSH into people.apache.org and &#65279;cd&#160;to to Shiro's distribution location:
+<br clear="none" class="atl-forced-newline">
+<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
+<pre class="code-java">cd /www/www.apache.org/dist/shiro</pre>
+</div></div></li><li>Create a subdirectory for the specific version number released:
+<br clear="none" class="atl-forced-newline">
+<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
+<pre class="code-java">mkdir 1.2.1</pre>
+</div></div></li><li>Acquire the source release .zip and it's verifying files (.md5, .sha1, .asc, .asc.md5, .asc.sha1) from <a class="external-link" href="https://repository.apache.org">https://repository.apache.org</a>
+<br clear="none" class="atl-forced-newline">
+<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
+<pre class="code-java">wget --no-check-certificate https:<span class="code-comment">//repository.apache.org/content/groups/<span class="code-keyword">public</span>/org/apache/shiro/shiro-root/&lt;version&gt;/shiro-root-&lt;version&gt;-source-release.zip
+</span>wget --no-check-certificate https:<span class="code-comment">//repository.apache.org/content/groups/<span class="code-keyword">public</span>/org/apache/shiro/shiro-root/&lt;version&gt;/shiro-root-&lt;version&gt;-source-release.zip.md5
+</span>wget --no-check-certificate https:<span class="code-comment">//repository.apache.org/content/groups/<span class="code-keyword">public</span>/org/apache/shiro/shiro-root/&lt;version&gt;/shiro-root-&lt;version&gt;-source-release.zip.sha1
+</span>wget --no-check-certificate https:<span class="code-comment">//repository.apache.org/content/groups/<span class="code-keyword">public</span>/org/apache/shiro/shiro-root/&lt;version&gt;/shiro-root-&lt;version&gt;-source-release.zip.asc
+</span>wget --no-check-certificate https:<span class="code-comment">//repository.apache.org/content/groups/<span class="code-keyword">public</span>/org/apache/shiro/shiro-root/&lt;version&gt;/shiro-root-&lt;version&gt;-source-release.zip.asc.md5
+</span>wget --no-check-certificate https:<span class="code-comment">//repository.apache.org/content/groups/<span class="code-keyword">public</span>/org/apache/shiro/shiro-root/&lt;version&gt;/shiro-root-&lt;version&gt;-source-release.zip.asc.sha1</span></pre>
+</div></div></li></ol>
+	</li><li>Update the Shiro wiki's &#65279;<a href="download.html" title="Download">Download</a>&#160;page to include a new entry for 1.2.1</li><li>Update the Shiro wiki's&#160;&#65279;<a href="index.html" title="Index">Index</a>&#160;page and update the download 'block'. &#160;This must be done via the Wiki Markup View so JavaScript can be edited.</li><li>Make an announcement as a Shiro blog article.  You can look at <a class="external-link" href="2012/01/24/apache-shiro-120-released.html">a previous announcement</a> as an example.</li><li>Make the same announcement on the Shiro user list (subject:&#160;[ANNOUNCE] Apache Shiro &lt;version&gt; released) and CC the developer list.</li><li>Update the <a class="external-link" href="http://en.wikipedia.org/wiki/Apache_Shiro" rel="nofollow">Apache Shiro Wikipedia page</a> to reflect the latest release information.</li><li>Update the 'current' symbolic link on people.apache.org to reference the latest static site documentation.  Fo
 r example (replace <b>1.2.1</b> with the latest version):
+<br clear="none" class="atl-forced-newline">
+<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
+<pre class="code-java">
+$ ssh people.apache.org
+$ cd /www/apache.shiro.org/<span class="code-keyword">static</span>
+$ rm current
+$ ln -s 1.2.1 current 
+</pre>
+</div></div></li></ol>



Mime
View raw message