The AUTH protocol creates the auth token when setAuthClass is called. However, there is no getter for the token, so it cannot be obtained from the AUTH protocol and configured programmatically (e.g. to set the password). Effectively, this renders the AUTH protocol unusable.

A solution would be to supply accessors (getter and setter) for the token, so the protocol can be configured correctly.