Thanks for picking this up, I should have remembered. Ian On 24 Jan 2010, at 20:03, Felix Meschberger (JIRA) wrote:
> > [ > https://issues.apache.org/jira/browse/SLING-1282?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12804293#action_12804293 > ] > > Felix Meschberger commented on SLING-1282: > ------------------------------------------ > > Commented the password properties that they are not used in the embedded > Jackrabbit Repository bundle in Rev. 902634 and in Rev. 902635 set the > passwords to a dummy value in the generated default configuration. > >> Adminisrative logins depend on password in the code or config >> ------------------------------------------------------------- >> >> Key: SLING-1282 >> URL: https://issues.apache.org/jira/browse/SLING-1282 >> Project: Sling >> Issue Type: Bug >> Components: JCR >> Affects Versions: JCR Jackrabbit Server 2.0.6 >> Reporter: Ian Boston >> Assignee: Ian Boston >> Fix For: JCR Jackrabbit Server 2.0.6 >> >> >> Administrative logins use SimpleCredentials which means that they have to >> have a password. Although this is a configuration parameter changing the >> admin password creates some JVM timing difficulties especially when >> operating in a cluster. (JVMs would probably need to be restarted with new >> config immediately after changing the admin password.) >> It would be better to use special credentials to indicate internal logins to >> the repository (eg public final class AdministrativeCredentials implements >> Credentials) >> same is true for Anon/Guest users, although less important. > > -- > This message is automatically generated by JIRA. > - > You can reply to this email to add a comment to the issue online. >
