[jboss-cvs] jboss-seam/src/main/org/jboss/seam/security/digest ...

Shane Bryzak sbryzak at redhat.com
Wed May 23 04:24:49 EDT 2007 

  User: sbryzak2
  Date: 07/05/23 04:24:49

  Modified:    src/main/org/jboss/seam/security/digest 
                        DigestAuthenticator.java
  Log:
  more digest stuff
  
  Revision  Changes    Path
  1.2       +3 -10     jboss-seam/src/main/org/jboss/seam/security/digest/DigestAuthenticator.java
  
  (In the diff below, changes in quantity of whitespace are not shown.)
  
  Index: DigestAuthenticator.java
  ===================================================================
  RCS file: /cvsroot/jboss/jboss-seam/src/main/org/jboss/seam/security/digest/DigestAuthenticator.java,v
  retrieving revision 1.1
  retrieving revision 1.2
  diff -u -b -r1.1 -r1.2
  --- DigestAuthenticator.java	23 May 2007 03:44:32 -0000	1.1
  +++ DigestAuthenticator.java	23 May 2007 08:24:49 -0000	1.2
  @@ -1,7 +1,5 @@
   package org.jboss.seam.security.digest;
   
  -import javax.security.auth.login.LoginException;
  -
   import org.jboss.seam.contexts.Context;
   import org.jboss.seam.contexts.Contexts;
   import org.jboss.seam.security.Identity;
  @@ -14,15 +12,14 @@
    */
   public abstract class DigestAuthenticator
   {
  -   protected void checkPassword(String password)
  -      throws LoginException
  +   protected boolean validatePassword(String password)
      {
         Context ctx = Contexts.getSessionContext();
         
         DigestRequest digestRequest = (DigestRequest) ctx.get(DigestRequest.DIGEST_REQUEST);
         if (digestRequest == null)
         {
  -         throw new LoginException("No digest request found in session scope");
  +         throw new IllegalStateException("No digest request found in session scope");
         }
         
         // Remove the digest request from the session now
  @@ -37,10 +34,6 @@
                  digestRequest.getNonce(), digestRequest.getNonceCount(), 
                  digestRequest.getClientNonce());
   
  -      // If digest is incorrect, try refreshing from backend and recomputing
  -      if (!serverDigestMd5.equals(digestRequest.getClientDigest()))
  -      {
  -         throw new LoginException("Digest authentication failed - incorrect response");
  -      }
  +      return serverDigestMd5.equals(digestRequest.getClientDigest());
      }  
   }

More information about the jboss-cvs-commits mailing list