[Springpython-developer] Import update to Spring Python - ApplicationSecurity

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Two significant changes have been delivered to the subversion trunk
baseline.

1. DaoAuthenticationProvider has been implemented along with an
InMemoryUserDetailsService. This code is meant to replace the previous
InMemoryAuthenticationProvider. At some time in the future, the
deprecated code will be removed.

2. The flag set in both InMemoryUserDetailsService and
InMemoryAuthenticationProvider's userMap indicating "disabled" has now
been flipped to indicate "enabled", in order to be consistent with the
DatabaseUserDetailsService. If you are using such a map in your code,
toggle all False to True and vice versa.

Right now, Dao authentication is plaintext. There are plans to get at
least one encoder written, so we aren't totally in the clear with the
next release of Spring Python.

Greg
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFF7NRGWo5A/EaBZk4RAmK3AKDrn9Nikt4WrcdDhePwRugtZKda6wCeLdKJ
zxRhhzxul7mT5DyzmHDEOi8=
=CM4N
-----END PGP SIGNATURE-----