Ralph Goers wrote: > > On Aug 14, 2009, at 4:23 AM, Jörg Schaible wrote: > >> >> It works ... :) >> ... the lack of any test is unfortunate though. >> >> To support encryption in the StaticUserAuthenticator, the algorithm to >> decrypt it could be applied at the password provided in the >> constructor. >> > But that would mean every UserAuthenticator class would have to > implement that logic. For UserAuthenticators, it would be better if > the decryption happened in UserAuthenticationData.setData(). OTOH, > since it appears that UserAuthenticators have to be instantiated by a > client they could easily decrypt the password before storing it in the > UserAuthenticator they create.
OK. Is the URI parsing pluggable though? We use normally an own specific format for encrypted passwords and it could be useful to replace this part with our own implementation. - Jörg --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@commons.apache.org For additional commands, e-mail: dev-h...@commons.apache.org
