Hi Kalle,
Thanks for the extra information, yes I was looking for that type of
documentation and the example app has helped my understanding.
I still have a couple of questions though...
Firstly, I'd like to use a salted hash to match credentials... the
booking example application does not do this and the documentation (for
shiro) doesn't quite show the complete picture.
How can I get a handle to an instance of my CredentialsMatcher and then
expose the method of hashing? should I make it a service too? I want to
get a handle to it in 2 places:
1. at signup so i can persist the hashed password using the identical
hashing mechanism
2. in a database upgrade step so i can convert clear-text passwords into
the hashed version
Why and how should I implement
AuthorizingRealm.doGetAuthorizationInfo(PrincipalCollection principals)
? When would it be called in my basic application?
i might have more questions later ......... ;)
cheers, paul.
On 11/11/2010 2:29 AM, Kalle Korhonen wrote:
Ah you are looking for documentation on Shiro. Maybe I can place the
links to it more prominently on tapestry-security page, but see
http://shiro.apache.org/core.html (there's more but for now Subject
and Realms are the most relevant to you). If you want examples,
Christophe's hotel booking demo with Tynamo
(https://github.com/ccordenier/tapestry5-hotel-booking/tree/tynamo) is
very nice.
Kalle
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tapestry.apache.org
For additional commands, e-mail: users-h...@tapestry.apache.org
