Re: [Acegisecurity-developer] Re: Remember me functionality via cookie
Piotr Maj wrote: Could you give me more precise date of this discuss or direct link to it? Mailman at sourceforge is not for human beings ;-) The new JDBC DAO implementation will ideally support password changing, remember me functionality, lost password support, account lockout (via a listener) and specialised ACL needs such as Andres mentioned in the thread below. Thus people can use the current JdbcDaoImpl (or implement AuthenticationDao), if they just want a KISS read-only provider, or they can use the new enhanced JDBC DAO (or a new MutableAuthenticationDao interface) if they want all the extra functions. As the needs are fairly broad, might I suggest sending the proposed schema to this list so people can discuss before you go to the trouble of implementing it? I know you're volunteering to help - so we'll be happy with whatever you contribute - but it would be great to ensure everything gets covered in this enhanced MutableAuthenticationDao and core implementation schema. While I think of it, we should require (via the interface contract) for MutableAuthenticationDao implementations to call userCache.removeUserFromCache(String username) at appropriate times. The thread is at http://www.mail-archive.com/[EMAIL PROTECTED]/msg00337.html. Best regards Ben --- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 ___ Acegisecurity-developer mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Re: Remember me functionality via cookie
Ben Alex wrote: As the needs are fairly broad, might I suggest sending the proposed schema to this list so people can discuss before you go to the trouble of implementing it? I know you're volunteering to help - so we'll be happy with whatever you contribute - but it would be great to ensure everything gets covered in this enhanced MutableAuthenticationDao and core implementation schema. While I think of it, we should require (via the interface contract) for MutableAuthenticationDao implementations to call userCache.removeUserFromCache(String username) at appropriate times. OK, I pretty new to Acegi - I follow the list since yesterday but of course do not want to make anything that wouldn't add much value to ageci. Let's do it once and let's do it good. The thread is at http://www.mail-archive.com/[EMAIL PROTECTED]/msg00337.html. It will take a while for me to jump into details. How much of this concept is already implemented? -- .:. Piotr Maj .:. .:. pgp 0xA07B0711 .:. .:. ant [EMAIL PROTECTED] kernelpanic.pl .:. .:. http://kernelpanic.pl/ .:. http://jdn.pl/ .:. --- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 ___ Acegisecurity-developer mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
[Acegisecurity-developer] RoleVoter is too sensitive
Hi all, Do you guys think that maybe the RoleVoter class is way too sensitive? :) I mean, I had a single space at the end of one of my values for my objectDefinitionSource property definition of the MethodSecurityInterceptor and it took me a while to figure out I had an extra space character there. Shouldn't the authority comparison code (line 119 in version 1.4 of net.sf.acegisecurity.vote.RoleVoter) trim the SecurityConfig attribute string before the actual comparison? Just a thought. Thompson Marzagao --- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 ___ Acegisecurity-developer mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer