[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
Re: [higgins-dev] Two proposed IdAS changes
|
Please send a note to the list when the IdAS code is updated in CVS.
Thanks,
Mike
higgins-dev-bounces@xxxxxxxxxxx wrote on 01/10/2007 01:10:49 PM:
> The interfaces in javadoc can be viewed at http://forgeftp.novell.
> com//bandit/HigginsIDASJavadoc/ for the time being. Specifically:
> http://forgeftp.novell.
> com//bandit/HigginsIDASJavadoc/org/eclipse/higgins/idas/IContext.
> html#open(java.lang.Object)
> http://forgeftp.novell.
>
com//bandit/HigginsIDASJavadoc/org/eclipse/higgins/idas/IAuthNPropertiesMaterials.
> html
> http://forgeftp.novell.
>
com//bandit/HigginsIDASJavadoc/org/eclipse/higgins/idas/impl/AuthNPropertiesMaterials.
> html
> http://forgeftp.novell.
>
com//bandit/HigginsIDASJavadoc/org/eclipse/higgins/idas/impl/AuthNNamePasswordMaterials.
> html
> http://forgeftp.novell.
>
com//bandit/HigginsIDASJavadoc/org/eclipse/higgins/idas/impl/AuthNSelfIssuedMaterials.
> html
>
> Jim
>
> Tom Doman wrote:
> Since I'm one of the ones proposing this, it'd be redundant, if not
> insincere, to say "sounds good jim, let's go with it!" So, instead
> I'll say that we're going to go ahead and try this out today amongst
> ourselves and get practical experience within the LDAP CP and if
> that goes well, we'll propose this "all CP" effecting change be
> checked in to IdAS tomorrow. Good?
>
> Tom
>
>
> Jim Sermersheim <jimse@xxxxxxxxxx> 01/09/07 6:42 PM >>>
>
> 1) We have a need for an IdAS consumer to be able to open a context
> using some authN materials, and then read the attributes of the DS
> representing the identity in the authN materials used to open the
> context. These authN materials don't contain the cuid of the DS. They
> may or may not contain attributes which could be used to search for the
> DS but this can't be relied on. Therefore, we propose that
> IContext.open return a String which is the cuid of the DS representing
> the identity in the authN materials used to open the context (if any).
> The string may be null when the identity is not represented by any
> specific DS in the context.
>
> Existing CP's and IdAS consumers would need to be updated for this
change.
>
> 2) We realized the current AuthNNamePasswordMaterials can be seen as
> similar to other kinds of AuthNMaterials. One thing many different
> kinds of AuthNMaterials seem to have in common is that they contain a
> set of properties that identify the identity. The proposal is to do
this:
> public interface org.eclipse.higgins.idas.IAuthNPropertiesMaterials
> extends IHasProperties
> public class org.eclipse.higgins.idas.impl.AuthNPropertiesMaterials
> extends BasicPropertySet implements IAuthNPropertiesMaterials
> public class org.eclipse.higgins.idas.impl.AuthNNamePasswordMaterials
> extends AuthNPropertiesMaterials
> public class org.eclipse.higgins.idas.impl.AuthNSelfIssuedMaterials
> extends AuthNPropertiesMaterials
>
> Where AuthNNamePasswordMaterials and AuthNSelfIssuedMaterials have
> get/set methods for name/pw and ppid/publicKey repectively, and where
> the implementations store these values as properties.
>
> This way a Context Provider can implement IContext.open by examining the
> class of the passed identity. If it's something specific like
> AuthNNamePasswordMaterials, it might know exactly what can be done with
> it. Failing that, it may discover that it implements
> IAuthNPropertiesMaterials and therefore, the property set may be
> interrogated in order to see if it constitutes a set of attributes which
> are suitable for describing an identity which can be used to open the
> context.
>
> Existing CP's and IdAS consumers currently implementing or making use of
> org.eclipse.higgins.idas.AuthNNamePasswordMaterials would need to be
> updated for this change.
>
> Jim
> _______________________________________________
> higgins-dev mailing list
> higgins-dev@xxxxxxxxxxx
> https://dev.eclipse.org/mailman/listinfo/higgins-dev
> _______________________________________________
> higgins-dev mailing list
> higgins-dev@xxxxxxxxxxx
> https://dev.eclipse.org/mailman/listinfo/higgins-dev
>
> _______________________________________________
> higgins-dev mailing list
> higgins-dev@xxxxxxxxxxx
> https://dev.eclipse.org/mailman/listinfo/higgins-dev