[jboss-jira] [JBoss JIRA] (ELY-927) Pass additional information to Elytron Realm getCredential method

[Darran Lofthouse (JIRA)]

    [ https://issues.jboss.org/browse/ELY-927?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13359624#comment-13359624 ] 

Darran Lofthouse commented on ELY-927:
--------------------------------------

Also we may still have some cases where we want to pass additional information from the mech to the realm.  We can use a specific credential type for the result but we still can't get the additional information into the RealmIdenty.

As an example session based Digest needs the nonce passing over.  The purpose of this is we can make a remote call to obtain a credential representation valid only for this session, even if the heap was compromised the credential instances on the heap would only be valid for a specific session and could not be used for new sessions.

> Pass additional information to Elytron Realm getCredential method
> -----------------------------------------------------------------
>
>                 Key: ELY-927
>                 URL: https://issues.jboss.org/browse/ELY-927
>             Project: WildFly Elytron
>          Issue Type: Bug
>            Reporter: Josef Cacek
>            Assignee: Darran Lofthouse
>
> There should be a possibility to retrieve additional information (e.g. Digest Realm name) in the realms when calling {{getCredential}} method. Currently such info has to be provided (duplicated) in the realm configuration.
> This issue is created as follow up for JBEAP-6003. See [this comment|https://issues.jboss.org/browse/JBEAP-6003?focusedCommentId=13359588&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-13359588] with HipChat discussion.



--
This message was sent by Atlassian JIRA
(v7.2.3#72005)