Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Apache Shiro integration and Netty ExecutionHandler/OrderedMemoryAwareThreadPoolExecutor

Tags:

multithreading

netty

shiro

I just added an ExecutionHandler to my server pipeline just before my main business logic handler as recommended in the documentation.

I am using Apache Shiro http://shiro.apache.org/ for security. It worked fine until I added the ExecutionHandler.

The issue:
Shiro's execution context is bound to the current thread in which you obtain the Subject object. So, if the Subject is obtained in the worker thread, but the business logic executes in a separate ExecutionHandler managed thread then the two execution contexts won't be connected as far as Shiro is concerned. Thus Shiro in the ExecutionHandler thread will fail to be aware that the Subject is in fact authenticated. So I'm getting Authentication errors.

It is possible to associate a given Subject with a Runnable before passing it to Executor.execute() so that the security context is maintained. See: http://shiro.apache.org/subject.html

Based on this I think need to find a way to associate the current Shiro Subject with the ExecutionHandler Runnable.

I'm still trying to fully understand the ExecutionHandler and OrderedMemoryAwareThreadPoolExecutor implementations.

Basically I need to call subject.associateWith(aRunnable) just before aRunnable is passed to Executor.execute(aRunnable).

Does anyone have thoughts on where/how I could hook Shiro into the mix?

Thanks, Matt

like image 432
Matt Friedman Avatar asked Mar 28 '12 02:03

Matt Friedman

Video Answer

1 Answers

Shiro can automate the thread handoffs for you.

You should be able to just use one of the SubjectAwareExecutor, SubjectAwareExecutorService, or SubjectAwareScheduledExecutorService implementations out of the box. You can wrap the actual ExecutorService that will execute the Runnables, and you're good. For example:

ExecutorService myExistingExecutorService = //get from somewhere
ExecutorService useThis = new SubjectAwareExecutorService(myExistingExecutorService);

You can 'inject' or configure the useThis instance anywhere in your application and the calling code doesn't ever need to know Shiro exists.

For example, an unaware component calling useThis.submit(someRandomRunnable) has no idea that Shiro is in use, but the Shiro Subject will still be retained across threads. Check out the respective JavaDoc pages for more.

HTH!

Les

like image 189
Les Hazlewood Avatar answered Oct 22 '22 01:10

Les Hazlewood
Sign in to Comment

Related questions

Access return value from Thread.Start()'s delegate function
Is it possible that a single-threaded program is executed simultaneously on more than one CPU core?
Update UI from multiple worker threads (.NET)
Read write mutex in C++
How to tell if there is an available thread in a thread pool in java
Java: multi-threaded maps: how do the implementations compare?
How to make perl thread without copying all variables?
Java: Parallelizing quick sort via multi-threading
How to Run an exe from windows service and stop service when the exe process quits?
Threading UI updates in Android
Passing in an anonymous delegate to a thread...why does this work?
Following pointers in a multithreaded environment
Linux kernel mutexes
BeginThread Structure - Delphi
How to set Image.Source property with Dispatcher?
How to Invoke the progress bar in Status strip?
can i kill or finish() an Activity in a Thread other than UI thread..?
Message passing between threads in C
What does the nid mean in a java thread dump?
Multithreading in iOS - how to force a thread to wait for a condition?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!