In the HTTPAuthentication example, there are two distinct steps in credentials validation:
1) RoleUser credentials = new RoleUser(username, password, role); if (credentials.validate()) { [..] 2) long userid = MemoryUsers.getRepInstance().verifyCredentials(credentials); if (userid >= 0) { [..] Apparently step 1 only makes simple checks about the existence of arguments, while step 2 performs the actual check of the username+password combo ? curious, fred -- F.Baube * Georgetown/MSFS/1988 * Think pangalactically. fbaube#saunalahti.fi * Act locally. gsm +358 41 536 8192 * wmd 60°11'10.8"N 24°57'36.9"E _______________________________________________ Rife-users mailing list Rife-users@uwyn.com http://www.uwyn.com/mailman/listinfo/rife-users