On Jul 6, 2007, at 10:49 PM, David Jencks wrote:
On Jul 6, 2007, at 10:15 AM, David Blevins wrote:
On Jul 5, 2007, at 5:44 PM, David Jencks wrote:
I'd like to modify the use of the openejb AuthenticationRequest
to include a security realm name. Then we can use the openejb
authentication request protocol to request an identification
token from the server and put it in the client subject so calls
to openejb can use it.
I updated the AuthenticationRequest constructor to basically match
the SecurityService.login(realm, user, pass) signature.
Also move the "PropertiesLogin" string from the code in the client
into the SecurityService impl so people could configure what they'd
like used as the default. It was in the SecurityService before but
not really configurable as it should have been.
I like the version byte you added to RealmPrincipalInfo. I added
something similar in v2 which needs to be ported, but I also like the
idea of adding a byte to each request, response and metadata object.
Good idea.
-David
