Is anyone working on SASL RMI? I'm using it in a project and I have some areas that I'd like to improve but I'd like to make sure that I have a correct understanding of how things work before making changes.
So far I've found what appears to be a bug on SRP authentication, and I have plans to make the following changes:
Enable authentication for local connections when not in debug mode
Implement a JDK1.2 style custom socket factory and eliminate the need for a custom rmiregistry
Write a HOWTO
Add a mechanism for specifying which users have access to an object
Add a mechanism for specifying authentication types that can be passed in via the constructor rather than be pulled from /node.config
If someone's already working on these, or if anyone has strong opinions on how these should be implemented please let me know.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Is anyone working on SASL RMI? I'm using it in a project and I have some areas that I'd like to improve but I'd like to make sure that I have a correct understanding of how things work before making changes.
So far I've found what appears to be a bug on SRP authentication, and I have plans to make the following changes:
Enable authentication for local connections when not in debug mode
Implement a JDK1.2 style custom socket factory and eliminate the need for a custom rmiregistry
Write a HOWTO
Add a mechanism for specifying which users have access to an object
Add a mechanism for specifying authentication types that can be passed in via the constructor rather than be pulled from /node.config
If someone's already working on these, or if anyone has strong opinions on how these should be implemented please let me know.