On the Verification of shiro

I want to do the function of forgetting my password, but it is always blocked by shiro, and all requests that do not log in jump back to the login page

ajax
function getYZM() {
         $.ajax({
                 url:"user/forgetPwdYz.do",
                 type:"POST",
               async: false, 
               success: function(data){
                  alert(""); 
                  alert(data);
               },
                 error:function(data){
                      alert(""); 
                   }
                 })
                    
    }
    shiro
<!-- Shiro Filter -->
    <bean id="shiroFilter" class="org.apache.shiro.spring.web.ShiroFilterFactoryBean">
        <property name="securityManager" ref="securityManager" />
        
        <property name="loginUrl" value="/" />
        
        <property name="successUrl" value="/main/index" />
        
        <property name="unauthorizedUrl" value="/login_toLogin" />
        
        <property name="filterChainDefinitions">
            <value>
            //user
            /user/*.do                    = anon
            /userYz.jsp/**                = anon
            
               /**                            = authc
            </value>
        </property>
    </bean>

Java shiro

Mar.29,2021

I tried. There is no problem with your configuration on my side. The corresponding url can be requested. If the post is directly requested using postman, you can request the corresponding result. I think you are trying to find the problem elsewhere. There is no configuration problem with shiro.

$.ajax({ url:'/user/forgetPwdYz.do' })

Previous: Vue routing processing load statu

Next: How does Jquery manipulate XML data

Shiro uses resource path permissions, and path judgment is incomplete.
[resolved] using filterChainDefinitionMap, in shiro such as page remove requires page:remove permission, but you can also access it as long as you access page remove , except for writing multiple ....

Java shiro springboot spring-mvc filter

Mar.03,2021
Follow me to learn shiro as a tutorial in Chapter 2. 2. 2. There is a question, how do you get two identity information?
original code: `ini configuration file (shiro-authenticator-all-success.ini) Java Code < H1 > specify the authenticator implementation of securityManager < H1 > authenticator=org.apache.shiro.authc.pam.ModularRealmAuthenticator securityManager....

Java shiro

Apr.03,2021
Shiro failed to obtain custom Realm information through getPrincipal () after login?
in a certain method, you want to obtain custom Realm information through getPrincipal (), but all the field information of the obtained entity is null configuration without cache processing, nor does it implement SessionDao . < hr > login code. If you...

Springboot java shiro

Jun.23,2021
After shiro login, click "return" to return to the login page.
how to prevent you from going back to the login page by clicking the browser back button after logging in? ...

Java shiro

Jan.25,2022
How does shiro deal with the problem that multiple different objects have different permissions for the same operation?
the usual application of shiro is like this. if there are mobile users and mobile phones, the mobile phone has many functions, such as gesture manipulation, call, video playback, text function, etc. each function as a menu user A has the permission t...

Permission spring java shiro

Apr.19,2022