On 10 Oct 00, at 20:58, Oleg Nitz wrote:
> Okay, answer the following question: why not use JAAS, which is
> a standard authentication and authorization API, for authorization of
> user access to the beans? Why invent new interfaces for that?
> Why reimplement JAAS Configuration which is ready to use?
> At last, why waste our time in endless license discussions?
> All these arguments might be weak, but I don't break anything, I don't
> replace your design, I am going to propose the GPL'ed implementation
> of your interfaces, which would enable me and others to write
> non-GPLed LoginModules for jBoss, because I believe this is a right
> way and this is for the common good.
> Also I believe that while for now JAAS seems to cause overhead,
> it is very flexible and may prove to be useful in the future.
Hi Oleg,
As I said in my last e-mail, I'm interested in seeing the
implementation. I certainly don't oppose this effort, even if you do
"break" something--there's not much there to break!
I think I've made all my design comments, for some or all of which
you have good answers. I know that sometimes comments on a
proposed design can be perceived as obstructionist, and I certainly
don't want that! I'm just trying to pitch in--and of course, partly out
of self-interest, because I benefit when jBoss improves. :-)
-Dan
>
> Regards,
> Oleg
>
>
>
