Downloading and installing shiro.

下载并安装shiro。

Why would you use Apache Shiro today?

今天，你为何愿意使用Apache Shiro ？

Shiro of course would never expect you to do this.

Shiro当然从来不会期望你这么做。

Listing 15 shows the configuration snippet in Shiro INI.

清单15中显示了Shiro INI中的配置片段。

Flexible - Apache Shiro can work in any application environment.

灵活性- Apache Shiro可以工作在任何应用环境中。

You can apply Shiro to two basic techniques in a web application.

您可以使用两种基本技巧将Shiro应用到web应用程序。

The third and final core concept in Shiro is that of a Realm.

Shiro的第三个也是最后一个概念是Realm。

Shiro supports this same workflow in a simple and intuitive way.

Shiro以简单直观的方式支持同样的流程。

Shiro addresses these issues in a clean and intuitive hashing API.

Shiro用一种干净而直观的哈希API解决了上述问题。

The only thing necessary is to define a Shiro Servlet Filter in web.xml.

唯一需要做的就是在web . xml中定义一个Shiro Servlet过滤器。

This similarity results because you can configure Shiro using the INI file.

这种类似性的出现是因为您可以使用INI文件来配置Shiro。

But with Shiro sessions, you obtain a container-independent clustering solution.

但通过Shiro会话，你可以获得一个容器无关的集群解决方案。

Apache Shiro is a framework that you can use for authentication and authorization.

Apache Shiro是一个框架，可用于身份验证和授权。

It is a real possibility that this feature will be supported in a future Shiro version.

这个功能在Shiro的未来版本中非常有可能得到支持。

The examples in this article introduce Shiro and focus on the basic task of authenticating a user.

本文中的这些例子旨在介绍 Shiro 并着重展示对用户进行身份验证的基本任务。

And while most security frameworks stop at authentication and authorization, Shiro provides much more.

虽然多数安全框架止于授权和认证，但Shiro提供了更多功能。

The simplest example of configuring Shiro based on INI is shown in the example in Listing 2 below.

下列清单2列出了基于INI的Shiro最简配置。

Note that Shiro also supports Spring XML configuration and other alternatives, but we'll cover INI here.

注意，Shiro还支持Spring XML配置及其他方式，但这里只我们只讨论INI。

Shiro tries to simplify the entire concept of cryptographic ciphers by introducing its CipherService API.

Shiro通过引入它的CipherService API试图简化加密密码的整个概念。

Apache Shiro offers a usable security framework that a variety of clients can apply to their applications.

Apache Shiro提供了一个可用的安全性框架，各种客户机都可将这个框架应用于它们的应用程序。

You can see how much Shiro simplifies hashing and encoding, saving you a bit of sanity in the process.

你可以看到Shiro对哈希和编码简化了不少，挽救了你处理在这类问题上所消耗的脑细胞。

When configuring Shiro, you must specify at least one Realm to use for authentication and/or authorization.

当配置Shiro时，你必须至少指定一个Realm，用于认证和（或）授权。

The big difference, of course, is that you can use Shiro Sessions in any application, not just web applications.

当然，最大的不同在于，你可以在任何应用中使用Shiro会话，不仅限于Web应用。

It is remarkably simpler and easier to understand what is going on when you use Shiro to simplify all of that work.

当使用Shiro简化所有这些工作时，一切都非常简单明了。

Shiro is a framework in the Apache Incubator that lets you add authentication and authorization to your applications.

Shiro 是 Apache Incubator 内的一个框架，可让您向应用程序中添加身份验证和授权。

By using Shiro, you can provide security for your application without writing all of the code from the beginning.

使用Shiro，您就能够为您的应用程序提供安全性而又无需从头编写所有代码。

Test harness support, making it very easy to have full testing of Shiro secured-code in unit and integration tests.

支持测试工具，这样可以很容易的对Shiro的安全代码进行单元测试和集成测试。

Listing 4 below is an example of configuring Shiro (via INI) to use an LDAP directory as one of the application's Realms.

下面的清单4是通过INI配置Shiro使用LDAP目录作为应用Realm的示例。

Shiro and its predecessor JSecurity has been in use for years in projects for companies of all sizes and across industries.

Shiro及其前身jsecurity已被各种规模和不同行业的公司项目采用多年。