Harmeet, > One flaw is that if the authentication credentials are passed in again the > alreadyAuthenticated state needs to be cleared. > >
Actually this description of the problem is not necessarily correct. >From section 3.1.1 of RFC 2980, which discusses the AUTHINFO command, specifies a set of as of yet unimplemented behavior (rejecting out of order authentication state, possibly rejecting reauthentication). I'm putting in the requisite return codes. Missed them because I was focusing on the original NNTP RFC. --Peter -- To unsubscribe, e-mail: <mailto:james-dev-unsubscribe@;jakarta.apache.org> For additional commands, e-mail: <mailto:james-dev-help@;jakarta.apache.org>
