<!--1 配置securityManager -->
<bean id="securityManager"
class="org.apache.shiro.web.mgt.DefaultWebSecurityManager">
<property name="cacheManager" ref="cacheManager" />
<!--
Single realm app. If you have multiple realms, use the 'realms' property instead.
-->
<property name="authenticator" ref="authenticator" />
<property name="realms">
<list>
<ref bean="jdbcRealm" />
<ref bean="secondShiroRealm" />
</list>
</property>
</bean>