Hi,
I have a question regarding the failure case of user authentication using
Orion security managers. I noticed that the User.authenticate()
method returns a boolean, and does not throw any exceptions at all. This
works
great for many situations. But now consider the case when someone would
like to relay some additional information to the user as to why their login
failed. Something that's over and above the boolean value returned from the
authenticate() method. Under such a scenario, what would be the mechanism
if any, under Orion right now to pass this kind of information to the user?
A related question: what was the rationale behind not having
the authenticate() method throw any type of checked exceptions? It just
seems to me that an exception there might provide a decent way of supporting
the scenario that I just described.
Any thoughts on that would be greatly appreciated.
Thanks,
Mike
winmail.dat
