Marvin, I'll clone the branch tonight and start taking a look at what I can help with (even if its just feedback).
Cheers, Scott On Tue, Apr 16, 2013 at 9:38 AM, Marvin S. Addison <[email protected] > wrote: > > Multi-factor authentication should have been the "big" feature of 4.0. I >> just remembered reviewing your last commits and I don't know where things >> are now. >> > > I fully agree. I think the release will be relatively anemic without those > changes. > > What's done: > > * AuthenticationHandler returns handler-specific metadata, including > optional Principal to allow more efficient credential-to-principal > resolution for simple cases. > > * AuthenticationManager throws expressive AuthenticationException which > summarizes successful (possibly with warnings) and unsuccessful > authentication handler results. This should allow for generalizing flows > like impending password expiration and forced password expiration in all > authentication handlers. > > * Leveraging java.security and javax.security exception vocabulary for > representing authentication error cases. > > * Some webflow changes that leverage the exception vocabulary change above. > > What's remaining: > > * Re-implementing LPPE in light of above changes. The ldaptive work > impacts on this. > > * Change AuthenticationManager to support multiple credentials. (My > recommendation is varargs to keep call compatibility with 3.x.) > > * Refactor AuthenticationManager implementations in light of multiple > credentials. (This could possibly be trimmed down to minimal work, but I > think there's a lot of room for improvement in those components.) > > * Testing > > > Do you have an estimate (%) of the remaining work ? >> > > Roughly 40% remaining. Offers for help welcome. > > > M > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/**display/JSG/cas-dev<http://www.ja-sig.org/wiki/display/JSG/cas-dev> > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
