----- Original Message -----
From: "Noel J. Bergman" <[EMAIL PROTECTED]>
> > Authentication is done against repository for
> > Each NNTP Comamnd in a User Session.
> > It should only be done once per user session.
>
> Are you saying that the isAuthenticated() method should short-circuit if
it
> has already authenticated? Something like:
>
> private boolean isAuthenticated() {
> if (alreadyAuthenticated) {
> return true;
> } else {
> ...
> }
>
One flaw is that if the authentication credentials are passed in again the
alreadyAuthenticated state needs to be cleared.
I would prefer to separate protocol authentication state management from the
handler. Likely to fix this sometime today.
Harmeet
--
To unsubscribe, e-mail: <mailto:james-dev-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:james-dev-help@;jakarta.apache.org>
