Bypass apache shiro authentication

How can I bypass Apache Shiro authentication and just use the authorization scheme. The reason I would like to achieve this is because I am using an in house SSO Authentication written for our cloud application and I would not like to save user information on our application server apart from basic user id and roles.

Solution

Implement custom realm (e.g. extend JdbcRealm class) and override doGetAuthenticationInfo and authenticate user within tthat method in any way you want. Of course depending on your authentication method you might have to modify the authorization bit as well (e.g. change the authorization query or even whole DB structure).

Shiro filter not working in Spring Boot application
How to show result page when integrating Struts 2 with Apache Shiro
Grails + Securing Application
PrimeFaces 13.0 displays "Invalid Request" at beginning of browser session
Jakarta EE with Apache Shiro
How to make JasperReports work with Jakarta EE 9 or any workaround to make JasperReports (6.20.0 version) work with Jakarta EE 9?
Achieve Dynamic REST Resource specific Authorization
shiro filters with duplicate patterns which one used
Apache Shiro integration and Netty ExecutionHandler/OrderedMemoryAwareThreadPoolExecutor
API Key implementation in Apache Shiro
Please ensure that at least one realm can authenticate these tokens
Shiro - redirect to login page after session timeout
UnavailableSecurityManagerException while integrating shiro with jetty
apacahe shiro ,after 1 successful basic authentication it returns true for all wrong credentials
Does Shiro offer extended duration cookie authentication?
Migrating Shiro hashed passwords to Spring Security hashed passwords
Session replication with VaadinSession not working
newbie question : Apache Shiro recover password
The method expect(boolean) is undefined for the type in Shiro test
why @Autowired work without @Component when inside @Configuration
How to correct Shiro logout code (user can still access pages after log out is executed)?
What class or method needs to be overridden or implemented to customize only the authenticate logic for Shiro?
ABAC support for Spring Security or Apache Shiro
Apache Shiro: How do I add a new annotation method interceptor into the mix?
How to redirect already authenticated user from login page to home page
Tag Mismatch using RememberMe token with Shiro
org.apache.shiro.web.filter.authc.LogoutFilter is already configured in ShiroWebModule
JAAS, Spring Security or Apache Shiro
How to fix "org.apache.shiro.UnavailableSecurityManagerException" error with "SecurityUtils.getSubject()"
Best way to restrict login to adjustable set of roles