[jboss-jira] [JBoss JIRA] (ELY-151) Ability to supply additional information during credential acquisition
Darran Lofthouse (JIRA)
issues at jboss.org
Tue Feb 10 06:06:49 EST 2015
Darran Lofthouse created ELY-151:
------------------------------------
Summary: Ability to supply additional information during credential acquisition
Key: ELY-151
URL: https://issues.jboss.org/browse/ELY-151
Project: WildFly Elytron
Issue Type: Enhancement
Components: API / SPI, Passwords
Reporter: Darran Lofthouse
Assignee: Darran Lofthouse
Fix For: 1.0.0.Alpha1
I think this is the final known gap in our credential acquisition and validation API/SPI.
There are a couple of specifications that also allow for additional information to be used when obtaining a representation of a users credential, the most obvious being the session based variant of digest authentication where a nonce and cnonce are also incorporated.
A second variant with two different modes of operation would be the realm associated with the digest credential, currently we assume it is tightly associated with the storage representation of the credential but it could also be the case that the mech is requesting it for a specific realm.
--
This message was sent by Atlassian JIRA
(v6.3.11#6341)
More information about the jboss-jira
mailing list