2013 March - Board report for Apache Shiro

Apache Shiro is a powerful and flexible open-source application security
framework that cleanly handles authentication, authorization, enterprise
session management and cryptography.

We have no issues that require Board assistance at this time.

Releases:

- We have not released anything since our previous 1.2.1 bugfix release.
  However, enough community desire has surfaced for a 1.2.2 patch release
  as well as a 1.3.0 release.  We are making strong efforts this and
  next week to accomplish this.

- After these next 1.2.1 and 1.3.0 releases, we might start targeting a
  2.0 distribution, which would incorporate a lot of desired changes.  We
  have been careful about this because this would very likely introduce
  backwards incompatible changes that we can't do on minor or patch releases
  as we follow the APR versioning guidelines.

Community & Project:

- Les presented Intro to Apache Shiro at Apache Con this year - it was a good
  experience to see so many Apache folks.

- We still haven't had the time/volunteers to convert over to infra@'s CMS
  system for our public website, even though we're well past the deadline.
  This means that our public website can't be updated with new content until
  this occurs since (as we understand it) the confluence wiki is no longer
  supported.

- The Shiro community remains helpful, with steady month-after-month mailing
  list traffic.  No noticeable changes here.

- Everyone on the Shiro dev team has been quite busy w/ their respective
  full time jobs.  Coupled with the holidays, not much development was
  accomplished last quarter, but efforts are ramping up significantly for
  a 1.2.2 and 1.3.0 release.