Skip to content


Repository files navigation

The buji-pac4j project is a bridge from pac4j to Shiro to push the pac4j security context into the Shiro security context.
It's based on the pac4j security engine. It's available under the Apache 2 license.

buji-pac4j JDK pac4j Shiro Operating philosophy Usage of Lombok Status
version >= 9 17 v6 v1.11 Bridge only Yes Production ready
version >= 8 11 v5 v1.9 Bridge only No Production ready
version >= 6 11 v5 v1.8 Standalone security library No Production ready
version >= 5 8 v4 v1.5 Standalone security library No Production ready

It must be used with a pac4j security library:

  • certainly, the javaee-pac4j implementation (which has the same filters as buji-pac4j version <= 7.x)
  • or maybe, if you use Spring MVC, the spring-webmvc-pac4j implementation.

While it is always better to directly use a pac4j security library alone, this bridge can be used to keep legacy software and avoid full migration.


2) The bridge is automatically installed

See the configuration that is loaded by default.

3) Install, configure and use the pac4j security library

You must refer to the documentation of the pac4j security library you use: javaee-pac4j (or maybe spring-webmvc-pac4j).


Shiro demo: buji-pac4j-demo.


The latest released version is the Maven Central, available in the Maven central repository. The next version is under development.

See the release notes. Learn more by browsing the pac4j documentation and the buji-pac4j Javadoc.

See the migration guide as well.

Need help?

You can use the mailing lists or the commercial support.