More extensive unit test using the wamblee.org
security library.
Fixes for Glassfish V2.1. Apparently the APIs changed. Now
flexible JDBC realm uses standard JNDI lookups for the
datasource instead of a glassfish API. Also, it implements the
additional groups functionality itself instead of using
glassfish APIs.
The password.encoding property has been extended
so the number of digits to be padded with can be configured.
This allows a fix for a problem where SHA-1 encoding in
MySQL uses padding to a length of 40 instead of teh default
32. Also simple TEXT encoding has been added by which the
byte array of the digest method is just converted to a string.
Added charset optional property that allows
setting of the charset when converting a password to
a byte array as input to the digest algorithm.
7-Feb-2010: Version 0.4 available. Improved logging. Basically traffic related logging
(i.e. users being authenticated) is only done with log level FINEST> In addition there are
improvements in the internal design.
15-Feb-2009: Version 0.3 available. Fixed a problem in hex encoding so that a hex
number is always at least 32 characters long and padded with leading zeroes if needed.
6-Dec-2008: Version 0.2 available. Extension with user-specific password seeding as an
option to avoid dictionary attacks. The features in this version are based on feedback from
and discussions with Arnaud Rolly from gedial.com.
