> Had the AuthState object
I'm looking at it now ... I don't see where it does what you say it does. I
see two setters and the isAuthenticated() method:
public boolean isAuthenticated() {
if ( requiredAuth ) {
if (userSet && passwordSet ) {
return repo.test(user,password);
} else {
return false;
}
} else {
return true;
}
}
Once the userSet or passwordSet are set it always checks. They are never
cleared. Therefore if requiredAuth is ever set, and once the user and
password are set, it always checks the repository. Which is precisely the
complaint you initially raised this morning.
It appears that there is some question about WHAT the behavior should be,
not how to do it. So, PLEASE submit the state machine you believe describes
the behavior. We ought to resolve this issue at that level first, then make
any necessary code changes.
--- Noel
--
To unsubscribe, e-mail: <mailto:james-dev-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:james-dev-help@;jakarta.apache.org>
