Open juliencruz opened 9 years ago
Optional Gravatar support might be easier to providing a full account pictures service.
There are also a couple of open-source clones of Gravatar.
It is possible to register multiple shiro realms so that one can provide authentication and the other can provide authorization. This makes it possible to mix an ldap realm for identity and authentication and a local permission store for authorization.
This might remove the need to create a custom dao.
The existing Shiro authentication mechanism should be improved with the following features to enhance security: