[Opensource] should User.setPassword be hashing instead of
the UserInfo class?
larry hamel
expresso at codeguild.com
Wed Dec 4 09:23:46 PST 2002
that makes sense to me. DefaultUserInfo could shoulder that responsibility for the non-LDAP case.
larry
At 02:11 PM 12/3/2002, you wrote:
>I'm pretty much there with my LDAP implementation of UserInfo and have found an issue along the way. User.setPassword hashes the password. Shouldn't this be the responsibility of the class implementing UserInfo? For example, my UserLDAP has the directory hash the password. If the password is hashed in User.setPassword(), it will get hashed twice and be unusable.
>
>Comments?
>
>Mike
>
More information about the Opensource
mailing list