exist-development — eXist Developer's List

Re: [Exist-development] eXist & jetty

[Dmitriy S. <sha...@gm...>]

On Sun, 2009-11-01 at 01:19 +0500, Dmitriy Shabanov wrote:
> On Sat, 2009-10-31 at 21:11 +0100, Dannes Wessels wrote:
> > Dmitriy
> > 
> > cool..... that enables us to have the newest jetty (7???) in exist
> > 1.4.1 ; I read that performance is better.....

Well, the problem I see is "Almost stable"
http://docs.codehaus.org/display/JETTY/Downloading+Jetty


> the answer should be yes, servlet API same
> 
> Do we need JSP?
> 
-- 
Cheers,

Dmitriy Shabanov

Re: [Exist-development] eXist & jetty

[Dmitriy S. <sha...@gm...>]

On Sat, 2009-10-31 at 21:11 +0100, Dannes Wessels wrote:
> Dmitriy
> 
> cool..... that enables us to have the newest jetty (7???) in exist
> 1.4.1 ; I read that performance is better.....

the answer should be yes, servlet API same

Do we need JSP?

-- 
Cheers,

Dmitriy Shabanov

Re: [Exist-development] eXist & jetty

[Dannes W. <di...@ex...>]

Dmitriy

cool..... that enables us to have the newest jetty (7???) in exist 1.4.1 ; I
read that performance is better.....

cheers

Dannes

On Sat, Oct 31, 2009 at 6:25 PM, Dmitriy Shabanov <sha...@gm...>wrote:

> That is fixed. It working, only small problem left is dynamic servlet
> creation (from configuration), few more lines.
>
> --
> Cheers,
>
> Dmitriy Shabanov
>
> On Tue, 2009-10-20 at 22:23 +0200, Dannes Wessels wrote:
> > http://atomic.exist-db.org/blogs/dizzzz/Jetty5toJetty6
> >
> > On 16 Oct 2009, at 13:26 , Dmitriy Shabanov wrote:
> >
> > > Is it jetty-update?
> > >
> > > If you are interesting I can help you with jetty update. Please,
> > > commit
> > > changes you did made & current problems list or todo.
> > >
> > > --
> > > Cheers,
> > >
> > > Dmitriy Shabanov
> > >
> > > On Fri, 2009-10-16 at 13:09 +0200, Dannes Wessels wrote:
> > >> yes......
> > >>
> > >> I got stuck on a level of redesign. I have pending work on my Laptop
> > >> which I could commit.
> > >>
> > >> The main issue is getting the alternative jetty mode working (port
> > >> 8088 mode in jetty). We have done too much customizations which
> > >> cannot
> > >> be ported at all.....
> > >>
> > >> so some redesign is needed there.... (i have a separate branche for
> > >> it)
> > >>
> > >> D.
> > >>
> > >> On Fri, Oct 16, 2009 at 12:51 PM, Dmitriy Shabanov
> > >> <sha...@gm...> wrote:
> > >>        Hi,
> > >>
> > >>        I did see your jetty update several weeks ago.
> > >>        And my question: Did you face any trouble with update up to
> > >>        6.1
> > >>        (jetty) ?
>
>


-- 
eXist-db Native XML Database - http://exist-db.org
Join us on linked-in: http://www.linkedin.com/groups?gid=35624

Re: [Exist-development] eXist & jetty

[Dmitriy S. <sha...@gm...>]

That is fixed. It working, only small problem left is dynamic servlet
creation (from configuration), few more lines.

-- 
Cheers,

Dmitriy Shabanov

On Tue, 2009-10-20 at 22:23 +0200, Dannes Wessels wrote:
> http://atomic.exist-db.org/blogs/dizzzz/Jetty5toJetty6
> 
> On 16 Oct 2009, at 13:26 , Dmitriy Shabanov wrote:
> 
> > Is it jetty-update?
> >
> > If you are interesting I can help you with jetty update. Please,  
> > commit
> > changes you did made & current problems list or todo.
> >
> > -- 
> > Cheers,
> >
> > Dmitriy Shabanov
> >
> > On Fri, 2009-10-16 at 13:09 +0200, Dannes Wessels wrote:
> >> yes......
> >>
> >> I got stuck on a level of redesign. I have pending work on my Laptop
> >> which I could commit.
> >>
> >> The main issue is getting the alternative jetty mode working (port
> >> 8088 mode in jetty). We have done too much customizations which  
> >> cannot
> >> be ported at all.....
> >>
> >> so some redesign is needed there.... (i have a separate branche for
> >> it)
> >>
> >> D.
> >>
> >> On Fri, Oct 16, 2009 at 12:51 PM, Dmitriy Shabanov
> >> <sha...@gm...> wrote:
> >>        Hi,
> >>
> >>        I did see your jetty update several weeks ago.
> >>        And my question: Did you face any trouble with update up to
> >>        6.1
> >>        (jetty) ?

Re: [Exist-development] Developing OpenID for eXist

[Dmitriy S. <sha...@gm...>]

On Fri, 2009-10-30 at 10:37 -0500, Loren Cahlander wrote:
> How about 16:00 UTC/GMT?

It should be ok for me.

-- 
Cheers,

Dmitriy Shabanov

Re: [Exist-development] Pluggable Authentication Architecture

[Loren C. <lor...@gm...>]

This document is at https://support.syntactica.com/groups/existsecurity/wiki/67cf3/Pluggable_Authentication_Architecture.html
And an idea for the structure of the users XML file is at: https://support.syntactica.com/groups/existsecurity/wiki/fa687/Authentication_Entries_for_eXist.html

Re: [Exist-development] Developing OpenID for eXist

[Loren C. <lor...@gm...>]

How about 16:00 UTC/GMT?



On Oct 30, 2009, at 10:22 AM, Dmitriy Shabanov wrote:

> Hi all,
>
> First, I'll be glade to give a foot for it ;)
>
> Can we agree on conference call time on sunday?
>
> --  
> Dmitriy Shabanov
>
> On Fri, Oct 30, 2009 at 7:09 PM, Loren Cahlander <lor...@gm... 
> > wrote:
> I am available on Sunday.  I have a class all day tomorrow.
>
> On Oct 30, 2009, at 08:37 AM, Adam Retter wrote:
>
> > Sorry today is not good for me, I am available over the weekend or
> > next week otherwise...
> >
> > 2009/10/30 Loren Cahlander <lor...@gm...>:
> >> Adam,
> >> I agree with your thoughts.  I like the idea of pluggable
> >> authentication
> >> modules.  Would you be available for a Skype call later today to
> >> discuss and
> >> brainstorm?  I would like input for the pluggable authentication
> >> modules.
> >> from all interested parties
> >> Loren
> >> On Oct 30, 2009, at 06:47 AM, Adam Retter wrote:
> >>
> >> I think you would still need some sort of admin user that is
> >> maintained
> >> outside of OpenID. Otherwise what happens if you need to do
> >> something with
> >> eXist and your web connection has gone down.
> >>
> >> I would quite like to see a composite authentication system, where
> >> authentication modules are pluggable - you could plug in modules  
> for
> >> "eXist", "JDBC", "System (PAM/NTLM)", "LDAP", and you would be able
> >> to set
> >> an order of priority and user authentication would be attempted at
> >> each
> >> module in turn until one succeeds.
> >>
> >> Cheers Adam.
> >>
> >>
> >>
> >> 2009/10/29 Loren Cahlander <lor...@gm...>
> >>>
> >>> I am in the process of developing the authentication through
> >>> OpenID for
> >>> the eXist database.
> >>> According to the document that I wrote
> >>> at https://support.syntactica.com/groups/existsecurity/wiki/04f3c/Steps_to_implement_OpenID_in_eXist.html
> >>> ,
> >>> I need to implement a new SecurityManager class.
> >>>
> >>> A new Java class file will have to be written for maintaining the
> >>> user
> >>> account files for OpenID. That file will
> >>> beorg.exist.security.OpenIDXMLSecurityManager.java for storing the
> >>> information in an XML resource (/db/system/OpenID/ 
> OpenID_users.xml)
> >>> and org.exist.security.OpenIDLDAPSecurityManager.java for storing
> >>> the
> >>> information in LDAP.
> >>>
> >>> I have also run across the fact that the org.exist.security.User
> >>> class has
> >>> the password as an attribute within it.  I would like to propose  
> the
> >>> attached refactoring:
> >>> <usermodel.png>
> >>>
> >>> What impact would this have on you and do you see any  
> alternatives?
> >>> Loren
> >>>
> >>>
> >>>  
> ------------------------------------------------------------------------------
> >>> Come build with us! The BlackBerry(R) Developer Conference in  
> SF, CA
> >>> is the only developer event you need to attend this year.
> >>> Jumpstart your
> >>> developing skills, take BlackBerry mobile applications to market
> >>> and stay
> >>> ahead of the curve. Join us from November 9 - 12, 2009. Register
> >>> now!
> >>> http://p.sf.net/sfu/devconference
> >>> _______________________________________________
> >>> Exist-development mailing list
> >>> Exi...@li...
> >>> https://lists.sourceforge.net/lists/listinfo/exist-development
> >>>
> >>
> >>
> >>
> >> --
> >> Adam Retter
> >>
> >> eXist Developer
> >> { United Kingdom }
> >> ad...@ex...
> >> irc://irc.freenode.net/existdb
> >>
> >>
> >
> >
> >
> > --
> > Adam Retter
> >
> > eXist Developer
> > { United Kingdom }
> > ad...@ex...
> > irc://irc.freenode.net/existdb
>
>
> ------------------------------------------------------------------------------
> Come build with us! The BlackBerry(R) Developer Conference in SF, CA
> is the only developer event you need to attend this year. Jumpstart  
> your
> developing skills, take BlackBerry mobile applications to market and  
> stay
> ahead of the curve. Join us from November 9 - 12, 2009. Register now!
> http://p.sf.net/sfu/devconference
> _______________________________________________
> Exist-development mailing list
> Exi...@li...
> https://lists.sourceforge.net/lists/listinfo/exist-development
>
>
>
> -- 
> Dmitriy Shabanov

[Exist-development] Pluggable Authentication Architecture

[Loren C. <lor...@gm...>]

On Oct 30, 2009, at 06:47 AM, Adam Retter wrote:

> I think you would still need some sort of admin user that is  
> maintained outside of OpenID. Otherwise what happens if you need to  
> do something with eXist and your web connection has gone down.
>
> I would quite like to see a composite authentication system, where  
> authentication modules are pluggable - you could plug in modules for  
> "eXist", "JDBC", "System (PAM/NTLM)", "LDAP", and you would be able  
> to set an order of priority and user authentication would be  
> attempted at each module in turn until one succeeds.
>
> Cheers Adam.


After the above email exchange with Adam, I decided to take a  
different tack and work towards a Pluggable Authentication  
Architecture.  Below is a list of requirements that I have devised.   
Please reply with additional requirements that you have identified or  
refute the ones that I have listed.

A user has one and only one method of authentication

	Multiple authentication methods for a user can lead to confusion, so  
that is why the requirement of a single authentication method for a  
given user.

Admin is always created as a DefaultAuthentication (password is stored  
in the eXist database as a hash)
The password is null
Admin is created with the dba group
Guest is always created as a DefaultAuthentication (password is stored  
in the eXist database as a hash)
The password is null
Guest is created with the guest group
A user's authentication can be converted from one method of  
authentication to another
The admin user cannot be converted to any other authentication type,  
because the other authentication types rely on other services that  
might be offline.
The guest user may be converted to another authentication type, but is  
discouraged because they rely on other services that might be offline.
All users must belong to at least one group.
The DefaultAuthentication uses the MD5 hash as the default, but can be  
configured to use alternate hashes


The authorization architecture is a separate issue and will be dealt  
with in a different thread.

Below is a preliminary class diagram for the authentication discussion.



Loren

Re: [Exist-development] Developing OpenID for eXist

[Dmitriy S. <sha...@gm...>]

Hi all,

First, I'll be glade to give a foot for it ;)

Can we agree on conference call time on sunday?

-- 
Dmitriy Shabanov

On Fri, Oct 30, 2009 at 7:09 PM, Loren Cahlander
<lor...@gm...>wrote:

> I am available on Sunday.  I have a class all day tomorrow.
>
> On Oct 30, 2009, at 08:37 AM, Adam Retter wrote:
>
> > Sorry today is not good for me, I am available over the weekend or
> > next week otherwise...
> >
> > 2009/10/30 Loren Cahlander <lor...@gm...>:
> >> Adam,
> >> I agree with your thoughts.  I like the idea of pluggable
> >> authentication
> >> modules.  Would you be available for a Skype call later today to
> >> discuss and
> >> brainstorm?  I would like input for the pluggable authentication
> >> modules.
> >> from all interested parties
> >> Loren
> >> On Oct 30, 2009, at 06:47 AM, Adam Retter wrote:
> >>
> >> I think you would still need some sort of admin user that is
> >> maintained
> >> outside of OpenID. Otherwise what happens if you need to do
> >> something with
> >> eXist and your web connection has gone down.
> >>
> >> I would quite like to see a composite authentication system, where
> >> authentication modules are pluggable - you could plug in modules for
> >> "eXist", "JDBC", "System (PAM/NTLM)", "LDAP", and you would be able
> >> to set
> >> an order of priority and user authentication would be attempted at
> >> each
> >> module in turn until one succeeds.
> >>
> >> Cheers Adam.
> >>
> >>
> >>
> >> 2009/10/29 Loren Cahlander <lor...@gm...>
> >>>
> >>> I am in the process of developing the authentication through
> >>> OpenID for
> >>> the eXist database.
> >>> According to the document that I wrote
> >>> at
> https://support.syntactica.com/groups/existsecurity/wiki/04f3c/Steps_to_implement_OpenID_in_eXist.html
> >>> ,
> >>> I need to implement a new SecurityManager class.
> >>>
> >>> A new Java class file will have to be written for maintaining the
> >>> user
> >>> account files for OpenID. That file will
> >>> beorg.exist.security.OpenIDXMLSecurityManager.java for storing the
> >>> information in an XML resource (/db/system/OpenID/OpenID_users.xml)
> >>> and org.exist.security.OpenIDLDAPSecurityManager.java for storing
> >>> the
> >>> information in LDAP.
> >>>
> >>> I have also run across the fact that the org.exist.security.User
> >>> class has
> >>> the password as an attribute within it.  I would like to propose the
> >>> attached refactoring:
> >>> <usermodel.png>
> >>>
> >>> What impact would this have on you and do you see any alternatives?
> >>> Loren
> >>>
> >>>
> >>>
> ------------------------------------------------------------------------------
> >>> Come build with us! The BlackBerry(R) Developer Conference in SF, CA
> >>> is the only developer event you need to attend this year.
> >>> Jumpstart your
> >>> developing skills, take BlackBerry mobile applications to market
> >>> and stay
> >>> ahead of the curve. Join us from November 9 - 12, 2009. Register
> >>> now!
> >>> http://p.sf.net/sfu/devconference
> >>> _______________________________________________
> >>> Exist-development mailing list
> >>> Exi...@li...
> >>> https://lists.sourceforge.net/lists/listinfo/exist-development
> >>>
> >>
> >>
> >>
> >> --
> >> Adam Retter
> >>
> >> eXist Developer
> >> { United Kingdom }
> >> ad...@ex...
> >> irc://irc.freenode.net/existdb
> >>
> >>
> >
> >
> >
> > --
> > Adam Retter
> >
> > eXist Developer
> > { United Kingdom }
> > ad...@ex...
> > irc://irc.freenode.net/existdb
>
>
>
> ------------------------------------------------------------------------------
> Come build with us! The BlackBerry(R) Developer Conference in SF, CA
> is the only developer event you need to attend this year. Jumpstart your
> developing skills, take BlackBerry mobile applications to market and stay
> ahead of the curve. Join us from November 9 - 12, 2009. Register now!
> http://p.sf.net/sfu/devconference
> _______________________________________________
> Exist-development mailing list
> Exi...@li...
> https://lists.sourceforge.net/lists/listinfo/exist-development
>



-- 
Dmitriy Shabanov

Re: [Exist-development] Developing OpenID for eXist

[Loren C. <lor...@gm...>]

I am available on Sunday.  I have a class all day tomorrow.

On Oct 30, 2009, at 08:37 AM, Adam Retter wrote:

> Sorry today is not good for me, I am available over the weekend or
> next week otherwise...
>
> 2009/10/30 Loren Cahlander <lor...@gm...>:
>> Adam,
>> I agree with your thoughts.  I like the idea of pluggable  
>> authentication
>> modules.  Would you be available for a Skype call later today to  
>> discuss and
>> brainstorm?  I would like input for the pluggable authentication  
>> modules.
>> from all interested parties
>> Loren
>> On Oct 30, 2009, at 06:47 AM, Adam Retter wrote:
>>
>> I think you would still need some sort of admin user that is  
>> maintained
>> outside of OpenID. Otherwise what happens if you need to do  
>> something with
>> eXist and your web connection has gone down.
>>
>> I would quite like to see a composite authentication system, where
>> authentication modules are pluggable - you could plug in modules for
>> "eXist", "JDBC", "System (PAM/NTLM)", "LDAP", and you would be able  
>> to set
>> an order of priority and user authentication would be attempted at  
>> each
>> module in turn until one succeeds.
>>
>> Cheers Adam.
>>
>>
>>
>> 2009/10/29 Loren Cahlander <lor...@gm...>
>>>
>>> I am in the process of developing the authentication through  
>>> OpenID for
>>> the eXist database.
>>> According to the document that I wrote
>>> at https://support.syntactica.com/groups/existsecurity/wiki/04f3c/Steps_to_implement_OpenID_in_eXist.html 
>>> ,
>>> I need to implement a new SecurityManager class.
>>>
>>> A new Java class file will have to be written for maintaining the  
>>> user
>>> account files for OpenID. That file will
>>> beorg.exist.security.OpenIDXMLSecurityManager.java for storing the
>>> information in an XML resource (/db/system/OpenID/OpenID_users.xml)
>>> and org.exist.security.OpenIDLDAPSecurityManager.java for storing  
>>> the
>>> information in LDAP.
>>>
>>> I have also run across the fact that the org.exist.security.User  
>>> class has
>>> the password as an attribute within it.  I would like to propose the
>>> attached refactoring:
>>> <usermodel.png>
>>>
>>> What impact would this have on you and do you see any alternatives?
>>> Loren
>>>
>>>
>>> ------------------------------------------------------------------------------
>>> Come build with us! The BlackBerry(R) Developer Conference in SF, CA
>>> is the only developer event you need to attend this year.  
>>> Jumpstart your
>>> developing skills, take BlackBerry mobile applications to market  
>>> and stay
>>> ahead of the curve. Join us from November 9 - 12, 2009. Register  
>>> now!
>>> http://p.sf.net/sfu/devconference
>>> _______________________________________________
>>> Exist-development mailing list
>>> Exi...@li...
>>> https://lists.sourceforge.net/lists/listinfo/exist-development
>>>
>>
>>
>>
>> --
>> Adam Retter
>>
>> eXist Developer
>> { United Kingdom }
>> ad...@ex...
>> irc://irc.freenode.net/existdb
>>
>>
>
>
>
> -- 
> Adam Retter
>
> eXist Developer
> { United Kingdom }
> ad...@ex...
> irc://irc.freenode.net/existdb

Re: [Exist-development] Developing OpenID for eXist

[Adam R. <ad...@ex...>]

Sorry today is not good for me, I am available over the weekend or
next week otherwise...

2009/10/30 Loren Cahlander <lor...@gm...>:
> Adam,
> I agree with your thoughts.  I like the idea of pluggable authentication
> modules.  Would you be available for a Skype call later today to discuss and
> brainstorm?  I would like input for the pluggable authentication modules.
> from all interested parties
> Loren
> On Oct 30, 2009, at 06:47 AM, Adam Retter wrote:
>
> I think you would still need some sort of admin user that is maintained
> outside of OpenID. Otherwise what happens if you need to do something with
> eXist and your web connection has gone down.
>
> I would quite like to see a composite authentication system, where
> authentication modules are pluggable - you could plug in modules for
> "eXist", "JDBC", "System (PAM/NTLM)", "LDAP", and you would be able to set
> an order of priority and user authentication would be attempted at each
> module in turn until one succeeds.
>
> Cheers Adam.
>
>
>
> 2009/10/29 Loren Cahlander <lor...@gm...>
>>
>> I am in the process of developing the authentication through OpenID for
>> the eXist database.
>> According to the document that I wrote
>> at https://support.syntactica.com/groups/existsecurity/wiki/04f3c/Steps_to_implement_OpenID_in_eXist.html,
>> I need to implement a new SecurityManager class.
>>
>> A new Java class file will have to be written for maintaining the user
>> account files for OpenID. That file will
>> beorg.exist.security.OpenIDXMLSecurityManager.java for storing the
>> information in an XML resource (/db/system/OpenID/OpenID_users.xml)
>> and org.exist.security.OpenIDLDAPSecurityManager.java for storing the
>> information in LDAP.
>>
>> I have also run across the fact that the org.exist.security.User class has
>> the password as an attribute within it.  I would like to propose the
>> attached refactoring:
>> <usermodel.png>
>>
>> What impact would this have on you and do you see any alternatives?
>> Loren
>>
>>
>> ------------------------------------------------------------------------------
>> Come build with us! The BlackBerry(R) Developer Conference in SF, CA
>> is the only developer event you need to attend this year. Jumpstart your
>> developing skills, take BlackBerry mobile applications to market and stay
>> ahead of the curve. Join us from November 9 - 12, 2009. Register now!
>> http://p.sf.net/sfu/devconference
>> _______________________________________________
>> Exist-development mailing list
>> Exi...@li...
>> https://lists.sourceforge.net/lists/listinfo/exist-development
>>
>
>
>
> --
> Adam Retter
>
> eXist Developer
> { United Kingdom }
> ad...@ex...
> irc://irc.freenode.net/existdb
>
>



-- 
Adam Retter

eXist Developer
{ United Kingdom }
ad...@ex...
irc://irc.freenode.net/existdb

Re: [Exist-development] Developing OpenID for eXist

[Loren C. <lor...@gm...>]

Adam,

I agree with your thoughts.  I like the idea of pluggable  
authentication modules.  Would you be available for a Skype call later  
today to discuss and brainstorm?  I would like input for the pluggable  
authentication modules. from all interested parties

Loren

On Oct 30, 2009, at 06:47 AM, Adam Retter wrote:

> I think you would still need some sort of admin user that is  
> maintained outside of OpenID. Otherwise what happens if you need to  
> do something with eXist and your web connection has gone down.
>
> I would quite like to see a composite authentication system, where  
> authentication modules are pluggable - you could plug in modules for  
> "eXist", "JDBC", "System (PAM/NTLM)", "LDAP", and you would be able  
> to set an order of priority and user authentication would be  
> attempted at each module in turn until one succeeds.
>
> Cheers Adam.
>
>
>
> 2009/10/29 Loren Cahlander <lor...@gm...>
> I am in the process of developing the authentication through OpenID  
> for the eXist database.
>
> According to the document that I wrote at https://support.syntactica.com/groups/existsecurity/wiki/04f3c/Steps_to_implement_OpenID_in_eXist.html 
> , I need to implement a new SecurityManager class.
>
>> A new Java class file will have to be written for maintaining the  
>> user account files for OpenID. That file will  
>> beorg.exist.security.OpenIDXMLSecurityManager.java for storing the  
>> information in an XML resource (/db/system/OpenID/OpenID_users.xml)  
>> and org.exist.security.OpenIDLDAPSecurityManager.java for storing  
>> the information in LDAP.
>>
> I have also run across the fact that the org.exist.security.User  
> class has the password as an attribute within it.  I would like to  
> propose the attached refactoring:
>
> <usermodel.png>
>
> What impact would this have on you and do you see any alternatives?
>
> Loren
>
>
> ------------------------------------------------------------------------------
> Come build with us! The BlackBerry(R) Developer Conference in SF, CA
> is the only developer event you need to attend this year. Jumpstart  
> your
> developing skills, take BlackBerry mobile applications to market and  
> stay
> ahead of the curve. Join us from November 9 - 12, 2009. Register now!
> http://p.sf.net/sfu/devconference
> _______________________________________________
> Exist-development mailing list
> Exi...@li...
> https://lists.sourceforge.net/lists/listinfo/exist-development
>
>
>
>
> -- 
> Adam Retter
>
> eXist Developer
> { United Kingdom }
> ad...@ex...
> irc://irc.freenode.net/existdb

Re: [Exist-development] Developing OpenID for eXist

[Wolfgang <wol...@ex...>]

> I have also run across the fact that the *org.exist.security.User* class 
> has the password as an attribute within it.  I would like to propose the 
> attached refactoring:

It should be ok. The only problem I see is that we also use the User 
class on the client side to create or modify users (see 
RemoteUserManagementService). There you need to be able to set a 
password. But we could certainly create a subclass here as well.

Wolfgang

[Exist-development] Developing OpenID for eXist

[Loren C. <lor...@gm...>]

I am in the process of developing the authentication through OpenID  
for the eXist database.

According to the document that I wrote at https://support.syntactica.com/groups/existsecurity/wiki/04f3c/Steps_to_implement_OpenID_in_eXist.html 
, I need to implement a new SecurityManager class.

> A new Java class file will have to be written for maintaining the  
> user account files for OpenID. That file will  
> beorg.exist.security.OpenIDXMLSecurityManager.java for storing the  
> information in an XML resource (/db/system/OpenID/OpenID_users.xml)  
> and org.exist.security.OpenIDLDAPSecurityManager.java for storing  
> the information in LDAP.
>
I have also run across the fact that the org.exist.security.User class  
has the password as an attribute within it.  I would like to propose  
the attached refactoring:



What impact would this have on you and do you see any alternatives?

Loren

[Exist-development] alternative xmlparser...

[Dannes W. <di...@ex...>]

Guys,

I have added some code to be able to use an alternative XML parser under the
hood of exist. See
http://atomic.exist-db.org/blogs/dizzzz/SetAlternativeXMLparser

A quick search gave me several locations where a SAXParserFactory is
instantiated.  We need to figure out on which locations we could update the
code as well....

cheers

Dannes

-- 
eXist-db Native XML Database - http://exist-db.org
Join us on linked-in: http://www.linkedin.com/groups?gid=35624