This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "ESAPI Authentication"
From OWASP
(→Possible Enhancements) |
(→Possible Enhancements) |
||
| Line 11: | Line 11: | ||
* Provide a reauthentication API | * Provide a reauthentication API | ||
| − | * consider mechanisms provided by vm to associate authentication state invocation | + | * consider mechanisms provided by vm to associate authentication state with the invocation (e.g. Java AccessControlContext including Subject) |
Revision as of 14:56, 11 December 2008
Feature Overview
TODO
Possible Enhancements
- Wrap Principal don't extend
- Work to make compatible with container based authentication
- Provide a reauthentication API
- consider mechanisms provided by vm to associate authentication state with the invocation (e.g. Java AccessControlContext including Subject)
