Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-193

Add more combinations to CredentialSupport


    • Icon: Enhancement Enhancement
    • Resolution: Done
    • Icon: Major Major
    • 1.0.0.Alpha2
    • None
    • API / SPI
    • None

      The current combinations mean that if a realm claims a credential type is obtainable the realm is also required to be able to validate that credential type.

      This leads to a couple of problems: -

      • Some types the realm is now forced to verify don't actually make sense, e.g. verify a DigestPassword just because it is obtainable when verifying one does not actually make sense.
      • We have no API for comparison of specialised credential types so the realm needs to understand how to compare them.

      So instead we need to relax the CredentialSupport options to allow a realm to return a type without actually being able to verify that type.

            darran.lofthouse@redhat.com Darran Lofthouse
            darran.lofthouse@redhat.com Darran Lofthouse
            0 Vote for this issue
            1 Start watching this issue