Menu
▾
▴
Re: [Exist-development] on NULL password authentication will allways fail
|
From: Dmitriy S. <sha...@gm...> - 2010-04-13 08:09:46
|
Note: it wasn't changed. It's in plan.
On Tue, Apr 13, 2010 at 11:26 AM, Dannes Wessels <da...@ex...>wrote:
> Hi,
>
> On Tue, Apr 13, 2010 at 4:51 AM, Dmitriy Shabanov <sha...@gm...>
> wrote:
> > On Mon, 2010-04-12 at 19:58 +0000, di...@us... wrote:
> >> Collection root = DatabaseManager.getCollection("xmldb:exist://" +
> >> DBBroker.ROOT_COLLECTION, "admin", null);
> >
> > You should not use null as password, use "". On null password account
> > will be blocked (for now it have workaround at password check time, but
> > I do want to change it after next release).
>
> Aha. Is this what we want? What is the rationale? Probably there is
> lot's of code relying on the NULL since that is what we use ourself in
> our test code and samples code.
> Any changes in this area could be a bit dangerous...... should be
> communicated very well. Since I was not aware of it -yet-,
> communication on this change is still required......
>
> (e.g. update of javadoc)
>
> cheers
>
> Dannes
>
>
>
> --
> eXist-db Native XML Database - http://exist-db.org
> Join us on linked-in: http://www.linkedin.com/groups?gid=35624
>
--
Dmitriy Shabanov
|