As I mentioned in my mail ...
> To my understanding -
This is what can be expected, since the spec does not expose any API to
do this. Two months back there was a thread in this list. Look for
comments from James.
FYI, here is a snippet:
>> - [Sec 11.5.2 - Form Based Authentication] This is good step. However,
>> my concern is that the way authentication is performed is left to the
>> vendor, and the application developer has no control over it. I suggest
>> that both should be possible. The spec should specify a means (using the
>> deployment descriptor) to specify a component (and an interface) that
>> can perform authentication, bypassing the vendor's implementation. This
>> is necessary to integrate the web application with existing
>> authentication systems.
>
> This would require an "authentication handler" object of some sort to be
> defined by the api. This is on the list of things to look at long term,
> but not for this rev of the spec.
Muly Oved wrote:
> Is this part of the spec or is it documented somewhere? does someone support this?
>
Regards,
Subrahmanyam
------------------------------------------------
Subrahmanyam A.V.B.//http://www.Subrahmanyam.com
------------------------------------------------
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
