You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@mina.apache.org by Wang Ye <wa...@gmail.com> on 2012/07/21 15:58:43 UTC
Questiona about verifyCredentials
Hi, everyone!
I am currently configuring my IM server with Vysper. I did everything based on the documentation. And it worked fine for me. However I have a question about user authentication.
I implemented the interface UserAuthentication but in the method:
boolean verifyCredentials(String username, String passwordCleartext, Object credentials);
There is three parameters, the first two are easy to understand as we always type in username and password to login. But I can not get clear what the third one, credentials, a java object is used for. I logged it in my verifyCredentials implementation but it seems to be null (and always null) when I logged in with the Messages App in OS X. Since I am new to XMPP Protocol, I have no idea what the object credentials is. So can anyone explain this? Thanks in advance.
Sincerely,
Ye Wang
wangyeee@gmail.com
Re: Questiona about verifyCredentials
Posted by Bernd Fondermann <bf...@brainlounge.de>.
On 21.07.12 15:58, Wang Ye wrote:
> Hi, everyone!
>
> I am currently configuring my IM server with Vysper. I did everything based on the documentation. And it worked fine for me. However I have a question about user authentication.
>
> I implemented the interface UserAuthentication but in the method:
>
> boolean verifyCredentials(String username, String passwordCleartext, Object credentials);
>
> There is three parameters, the first two are easy to understand as we always type in username and password to login. But I can not get clear what the third one, credentials, a java object is used for. I logged it in my verifyCredentials implementation but it seems to be null (and always null) when I logged in with the Messages App in OS X. Since I am new to XMPP Protocol, I have no idea what the object credentials is. So can anyone explain this? Thanks in advance.
XMPP supports different authentication methods, via SASL (there should
be plenty of resources on the internet regarding SASL, it is
standardized by the IETF). Some of these methods might differ from
simply requiring username/password. To support a wide range of SASL
methods, a third parameter was added.
Vysper currently implements SASL ANONYMOUS and SASL PLAIN, both not
requiring the third parameter.
Bernd