On Sun, 7 Nov 2004, Aaron Mulder wrote:
> We will attempt to do this without breaking backward compatibility
> with the security realm API for now, though the security realm
> configuration in the deployment plans will need to change a bit, and we're
> going to mark the getXXXPrincipal() methods of the security realms as
> deprecated (to be removed after M3, perhaps for M4).
Okay, I spoke in haste. I don't think we're actually going to
make the realm interface fully backward compatible, but we're going to try
to smooth the transition by not changing the interface *very much*. For
example, it will now return an array of login modules configurations
instead of just one, so it supports multiple login modules, and some
things such as the local-ness will be configured instead of hardcoded in
the default implementation...
Aaron
