Ahh, that makes perfect sense. Thanks for clarifying that.
On Thu, Jul 30, 2009 at 16:04, Ian Boston<i...@tfd.co.uk> wrote: > > On 30 Jul 2009, at 20:50, Carl Hall wrote: > >> am implementing LoginModulePlugin but don't quite understand what >> you mean by not implementing the login protocol. > > > Ahh sorry, > > the browser might send a WWW-Authenticate header ... that would be the http > basic auth "protocol" for which there is an AuthenticationHandler. > > A web form might POST request properties "username" and "password" acording > to a unofficial "form login protocol" handled by a > FormAuthenticationHandler. > > but both of these will create SimpleCredentials which can be authenticated > using a LdapLoginModule against an LDAP. > > (did I make sense that time :)) > Ian >