Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-151

Ability to supply additional information during credential acquisition

    XMLWordPrintable

Details

    • Enhancement
    • Resolution: Unresolved
    • Major
    • None
    • None
    • API / SPI, Passwords
    • None

    Description

      I think this is the final known gap in our credential acquisition and validation API/SPI.

      There are a couple of specifications that also allow for additional information to be used when obtaining a representation of a users credential, the most obvious being the session based variant of digest authentication where a nonce and cnonce are also incorporated.

      A second variant with two different modes of operation would be the realm associated with the digest credential, currently we assume it is tightly associated with the storage representation of the credential but it could also be the case that the mech is requesting it for a specific realm.

      Attachments

        Issue Links

          blocks

          Sub-task - The sub-task of the issue ELY-153 Support DigestCredential with a specified realm name

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              darran.lofthouse@redhat.com Darran Lofthouse
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated: