Apache Shiro is a powerful and flexible open-source security framework that cleanly handles
authentication, authorization, enterprise session management, single sign-on and cryptography services.
| License | Apache 2.0 |
|---|---|
| Categories | Security Frameworks |
| Tags | bundlesecurityapacheshiroosgi |
| Date | Feb 28, 2024 |
| Files | pom (7 KB) bundle (285 KB) View All |
| Repositories | CentralTalend PublicWSO2 Public |
| Ranking | #735 in MvnRepository (See Top Artifacts) #3 in Security Frameworks |
| Used By | 766 artifacts |
| Vulnerabilities | Vulnerabilities from dependencies: CVE-2024-29133 CVE-2024-29131 |
Compile Dependencies (8)
| Category/License | Group / Artifact | Version | Updates | |
|---|---|---|---|---|
| Config Apache 2.0 |  | org.apache.commons » commons-configuration22 vulnerabilities | 2.9.0 | 2.12.0 |
Apache 2.0 | | org.apache.shiro » shiro-lang | 2.0.0 | 2.0.4 |
Apache 2.0 | | org.apache.shiro » shiro-cache | 2.0.0 | 2.0.4 |
Apache 2.0 | | org.apache.shiro » shiro-crypto-hash | 2.0.0 | 2.0.4 |
Apache 2.0 | | org.apache.shiro » shiro-crypto-cipher | 2.0.0 | 2.0.4 |
Apache 2.0 | | org.apache.shiro » shiro-config-core | 2.0.0 | 2.0.4 |
Apache 2.0 | | org.apache.shiro » shiro-config-ogdl | 2.0.0 | 2.0.4 |
Apache 2.0 | | org.apache.shiro » shiro-event | 2.0.0 | 2.0.4 |
Provided Dependencies (1)
| Category/License | Group / Artifact | Version | Updates | |
|---|---|---|---|---|
| Annotation Lib EPL 2.0GPL |  | jakarta.annotation » jakarta.annotation-api (optional) | 1.3.5 | 3.0.0 |
Runtime Dependencies (2)
| Category/License | Group / Artifact | Version | Updates | |
|---|---|---|---|---|
Apache 2.0 | | org.apache.shiro.crypto » shiro-hashes-argon2 | 2.0.0 | 2.0.4 |
Apache 2.0 | | org.apache.shiro.crypto » shiro-hashes-bcrypt | 2.0.0 | 2.0.4 |
Test Dependencies (5)
| Category/License | Group / Artifact | Version | Updates | |
|---|---|---|---|---|
| Logging Bridge Apache 2.0 |  | org.apache.logging.log4j » log4j-slf4j2-impl | 2.22.1 | 2.24.3 |
| Logging Apache 2.0 | | org.apache.logging.log4j » log4j-core | 2.22.1 | 2.24.3 |
Apache 2.0 | | org.apache.logging.log4j » log4j-core-test | 2.22.1 | 2.24.3 |
| Embedded SQL DB |  | org.hsqldb » hsqldb | 2.7.2 | 2.7.4 |
| Logging Bridge Apache 2.0 |  | org.slf4j » jcl-over-slf4j | 2.0.12 | 2.0.17 |
Licenses
| License | URL |
|---|---|
| Apache-2.0 | https://www.apache.org/licenses/LICENSE-2.0.txt |
Developers
| Name | Dev Id | Roles | Organization | |
|---|---|---|---|---|
| Allan Ditzel | aditzel<at>apache.org | aditzel | Apache Software Foundation | |
| Jeremy Haile | jhaile<at>apache.org | jhaile | Mobilization Labs | |
| Les Hazlewood | lhazlewood<at>apache.org | lhazlewood | Stormpath | |
| Kalle Korhonen | kaosko<at>apache.org | kaosko | Apache Software Foundation | |
| Peter Ledbrook | p.ledbrook<at>cacoethes.co.uk | pledbrook | SpringSource | |
| Tim Veil | tveil<at>apache.org | tveil | ||
| Brian Demers | bdemers<at>apache.org | bdemers | PMC Chair | Stormpath |
| Jared Bunting | jbunting<at>apache.org | jbunting | Apache Software Foundation | |
| Francois Papon | fpapon<at>apache.org | fpapon | Yupiik | |
| Benjamin Marwell | bmarwell<at>apache.org | bmarwell | ||
| Lenny Primak | lprimak<at>apache.org | lprimak | Flow Logix |