Hi, all
According to CallbackHandler
javadoc(http://java.sun.com/javase/6/docs/technotes/guides/security/jaas/JAASRefGuide.html#CallbackHandler),
the CallBackHandler should collect password information from external
source(LDAP, database) and set it to Callback. However, in this example(
http://wso2.org/library/3190), the PWCBHandler decides whether the
password is correct or not directly, which should be performed by
LoginModule.
Is this a mistaken or a designed hack?
thanks
-jason
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
