lhazlewood / apache-shiro-tutorial-webapp

A step-by-step tutorial showing how to secure a web app with Apache Shiro
Apache License 2.0
263 stars 3.39k forks source link

Using Stormpath makes it more complicated #14

Open zak905 opened 7 years ago

zak905 commented 7 years ago

Why using Stormpath while these simple lines in shiro.ini are enough to have a static user set up:

#username admin, password: secret
[users]
admin = secret
bdemers commented 7 years ago

Static username/passwords are great for quick examples, but it isn't a real world use-case (or at least it shouldn't be). That said, we do need to update this example.

aadrian commented 7 years ago

Static username/passwords are great for quick examples, but it isn't a real world use-case

Indeed. Even if it's very convenient and easy to use, unfortunately Stormpath isn't either an example for most users to simply just use it as a starting point :( .

Maybe a simple JDBC example with e.g. a H2 Database would be more helpful to get everybody on board ?

Thank you.

zak905 commented 7 years ago

A Jdbc example would be great.

chrisloughnane commented 6 years ago

JDBC example? Yes please. Coming from PHP frameworks such as zend and laravel I am finding it difficult to get this up and running.