What are the different ways of authorization in the Shiro framework?

The Shiro framework offers several options for authorization.

1. Role-Based Authorization is a method of controlling a user’s access to resources by assigning them specific roles. For example, by defining an “admin” role, only users with that role can perform certain actions.
2. Permission-Based Authorization involves assigning specific permissions to users in order to control their access to resources. For example, a “write” permission can be defined so that only users with this permission can perform writing operations.
3. Custom Authorization: The Shiro framework allows users to authorize in a customized way. It enables users to implement their own authorization logic to determine whether a user has the permission to perform a specific operation.
4. Wildcard Authorization: The Shiro framework supports authorization using wildcards, which can be used to match multiple roles or permissions. For example, using “role:*” allows users with any role to have permission.
5. Resource-Based Authorization is supported by the Shiro framework, also known as ACL (Access Control List) authorization. By assigning access permissions to each resource, users can be precisely controlled in their access to different resources.

It is worth noting that the above authorization methods can be used in combination to meet different authorization needs.