David,
> >
> Sorry about this.
> I didn't actually test it, just listened to
> someone's account and it
> seemed real enough
No problem, I would hate to have screwed up the build.
Has anyone else been able to reproduce the issue you
mention?
>
> thanks for the descriptions because atn and atz
> might not be apparent
> that they represent authentication and authorization
>
> > For easier configuration purpose, I have separated
> the
> > SPI from the API:
> >
> > - security-atn.xml:
> > Provides the login module configuration. Not
> everyone
> > needs this, as some application may decide to use
> > another login module other than the one provided.
> > - security-atz.xml:
> > Configures the authorization policy, in our case
> RDBMS
> > Policy.
> > - security-managers.xml:
> > Configures all the managers for security purpose.
> > - security-providers.xml:
> > Configures the various providers and weaves the
> SPI
> > together.
> > - security-spi.xml:
> > This configuration file contains configuration
> that
> > are common to the authentication and authorization
> > SPIs.
> > - security-spi-atn.xml:
> > This configuration file contains all the
> > configurations for configuring the authentication
> SPI.
> > - security-spi-atz.xml:
> > This configuratio file contains all the
> configurations
> > for configuring the authorization SPI.
> >
> > I also documented the subcomponents for each SPI
> xml
> > elements. Please see config.xml for more details.
> >
> > I felt this would provide quite a bit of
> flexibility
> > for the security layer, however feel free to
> change it
> > if you feel that another format would work better.
> >
> > Regards,
> >
> > David Le Strat.
__________________________________
Do you Yahoo!?
Yahoo! Mail - You care about security. So do we.
http://promotions.yahoo.com/new_mail
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
