core/src/main/java/org/apache/shiro/session/mgt/ExecutorServiceSessionValidationScheduler.java (2 lines): - line 40: //TODO - complete JavaDoc - line 93: //TODO Implement an integration test to test for jvm exit as part of the standalone example support/features/src/main/resources/features.xml (2 lines): - line 77: TODO enable when openid4j module is done - line 82: TODO: is there an openid4j OSGi bundle? web/src/main/java/org/apache/shiro/web/session/mgt/ServletContainerSessionManager.java (2 lines): - line 56: //TODO - complete JavaDoc - line 58: //TODO - read session timeout value from web.xml web/src/main/java/org/apache/shiro/web/env/IniWebEnvironment.java (2 lines): - line 354: //TODO - this logic is ugly - it'd be ideal if we had a Resource API to polymorphically encapsulate this behavior - line 390: //TODO - this logic is ugly - it'd be ideal if we had a Resource API to polymorphically encapsulate this behavior core/src/main/java/org/apache/shiro/realm/text/PropertiesRealm.java (2 lines): - line 86: //TODO - complete JavaDoc - line 157: //TODO - cleanup - this method shouldn't be necessary support/spring/src/main/java/org/apache/shiro/spring/remoting/SecureRemoteInvocationExecutor.java (1 line): - line 45: //TODO - complete JavaDoc web/src/main/java/org/apache/shiro/web/filter/authz/RolesAuthorizationFilter.java (1 line): - line 38: //TODO - complete JavaDoc web/src/main/java/org/apache/shiro/web/tags/HasAnyRolesTag.java (1 line): - line 31: //TODO - complete JavaDoc web/src/main/java/org/apache/shiro/web/tags/LacksRoleTag.java (1 line): - line 26: //TODO - complete JavaDoc core/src/main/java/org/apache/shiro/session/mgt/DelegatingSession.java (1 line): - line 45: //TODO - complete JavaDoc support/spring/src/main/java/org/apache/shiro/spring/security/interceptor/AuthorizationAttributeSourceAdvisor.java (1 line): - line 36: * TODO - complete JavaDoc web/src/main/java/org/apache/shiro/web/filter/authz/PermissionsAuthorizationFilter.java (1 line): - line 35: //TODO - complete JavaDoc crypto/hash/src/main/java/org/apache/shiro/crypto/hash/format/Shiro1CryptFormat.java (1 line): - line 139: //TODO create a HashFormatException class core/src/main/java/org/apache/shiro/realm/jdbc/JdbcRealm.java (1 line): - line 243: // TODO: separate password and hash from getPasswordForUser[0] web/src/main/java/org/apache/shiro/web/filter/authc/PassThruAuthenticationFilter.java (1 line): - line 49: //TODO - complete JavaDoc web/src/main/java/org/apache/shiro/web/config/IniFilterChainResolverFactory.java (1 line): - line 151: // TODO this assumes ANT path matching web/src/main/java/org/apache/shiro/web/util/SavedRequest.java (1 line): - line 32: //TODO - complete JavaDoc web/src/main/java/org/apache/shiro/web/servlet/ShiroHttpServletResponse.java (1 line): - line 47: //TODO - complete JavaDoc web/src/main/java/org/apache/shiro/web/servlet/SimpleCookie.java (1 line): - line 340: // TODO consider completely removing the following core/src/main/java/org/apache/shiro/subject/SimplePrincipalCollection.java (1 line): - line 54: //TODO - complete JavaDoc core/src/main/java/org/apache/shiro/session/mgt/AbstractSessionManager.java (1 line): - line 30: //TODO - deprecate this class (see SHIRO-240): web/src/main/java/org/apache/shiro/web/tags/HasPermissionTag.java (1 line): - line 26: //TODO - complete JavaDoc core/src/main/java/org/apache/shiro/util/AntPathMatcher.java (1 line): - line 64: //TODO - complete JavaDoc web/src/main/java/org/apache/shiro/web/util/RedirectView.java (1 line): - line 65: //TODO - complete JavaDoc support/spring/src/main/java/org/apache/shiro/spring/web/ShiroFilterFactoryBean.java (1 line): - line 448: // TODO this assumes ANT path matching, which might be OK here web/src/main/java/org/apache/shiro/web/tags/PrincipalTag.java (1 line): - line 47: //TODO - complete JavaDoc tools/hasher/src/main/java/org/apache/shiro/tools/hasher/Hasher.java (1 line): - line 257: // FIXME: add options here. web/src/main/java/org/apache/shiro/web/tags/HasRoleTag.java (1 line): - line 26: //TODO - complete JavaDoc core/src/main/java/org/apache/shiro/session/mgt/SimpleSession.java (1 line): - line 100: //TODO - remove concrete reference to DefaultSessionManager support/quartz/src/main/java/org/apache/shiro/session/mgt/quartz/QuartzSessionValidationScheduler.java (1 line): - line 48: //TODO - complete JavaDoc web/src/main/java/org/apache/shiro/web/tags/LacksPermissionTag.java (1 line): - line 26: //TODO - complete JavaDoc web/src/main/java/org/apache/shiro/web/servlet/ProxiedFilterChain.java (1 line): - line 42: //TODO - complete JavaDoc core/src/main/java/org/apache/shiro/realm/text/TextConfigurationRealm.java (1 line): - line 53: //TODO - complete JavaDoc