Hi Wolfgang, I got your latest sources for security support in Beehive/WSM. It looks pretty cool -- thanks much.
It looks like a bunch of source files has been borrowed from other Apache projects (which is fine, of course). Can we refer to those files in their respective jars (in binary format) rather than bringing the sources into Beehive. This would be beneficial in terms of code maintenance and protability. In order to do that, the code base might have to be structured further. More specifically, I think a bunch of files have been borrowed from Tomcat, for instance, others contain some glue code for those files. I think the Tomcat files should not go into Beehive, the Tomcat-specific glue code should go into a package like ...beehive/wsm/tomcat/security, for instance. Thus, the dependencies on Tomcat would be clear from the package name. I would like to discuss that in more detail. What do you think? Cheers, -michael
