There's still room behind the sauna...

You know... the people who designed the Java security model should probably be taught a lesson or two. There are two incompatible (and not to mention incomprehensible) security architectures in JDK 1.4. Both attempt to be as general as possible, but still they are loaded with the all sorts of odd assumptions which make them generally unsuitable for any web service work.

It's no wonder anyone building a webapp framework always implements their own permission/security scheme. And even these are totally incompatible.

Grr. The integration of ebu's auth code into JSPWiki may take a while - I just would like to use as much as possible of existing JDK code, but it seems too difficult.


More info...     Comments?   Back to weblog
"Main_blogentry_300303_1" last changed on 30-Mar-2003 21:55:54 EEST by unknown.