I've read the tutorial, but it doesn't answer all my questions. 1) Where do I set the Guard? I only need it on a couple of resources, so I was thinking I should create it in the constructor for the Resource. Does this seem logical/reasonable?
2) The example shows a call to getSecrets().put(). Does this mean I have to preload all my credentials when I create the Guard? I was hoping I could just grab the client-supplied username and password and let my own code decide if the user should be allowed in. 3) How does the flow work with challenges? Maybe this is related to question #1 above, but how does the Guard intercept the request, send the challenge, and then accept the new request without the Resource going away or being re-created? Especially with Digest, I dont think you'd want to re-create the Guard else the nonce would likely change? Any help or guidance would be appreciated! Mike ------------------------------------------------------ http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=1304872
