Anil Saldhana [https://community.jboss.org/people/anil.saldhana] created the document: "Authentication API Design " To view the document, visit: https://community.jboss.org/docs/DOC-19232 -------------------------------------------------------------- This article will talk about the various design elements involved in an authentication api. h2. h2. Goals to consider: * Non-protocol based mechanism where the principal passes tokens to the authentication framework - credential, certificate, OTP etc. * Protocol based mechanisms such as HTTPDigest, HTTPForm, HTTPBasic etc which can retrieve the user token in a predefined manner. * Identity Store that has the Principal's information (credential, serial number, certificate etc). * Minimize indirections such that the API is flexible, extensible yet easy to understand. -------------------------------------------------------------- Comment by going to Community [https://community.jboss.org/docs/DOC-19232] Create a new document in PicketBox Development at Community [https://community.jboss.org/choose-container!input.jspa?contentType=102&a...]