[OWASP-ESAPI] Using Other Authenticators

Jim Manico jim.manico at owasp.org
Wed Mar 11 14:37:57 EDT 2009


On the topic of using your own Authentication mechanism inside of ESAPI; I'm currently working on a few changes in ESAPI that will allow you to specify your own implementation at configuration time.

For example, I've recently checked a new logger into ESAPI - Log4JLogFactory. We already have JavaLogFactory.I built a mechanism so that either can be specificed at config time in ESAPI.properties like so:

Implementation.Logger=org.owasp.esapi.reference.JavaLogFactory

or

Implementation'Logger=org.owasp.esapi.reference.JavaLogFactory


I'm going to explode the same concept out Authenticator, Validator and all the other top-level classes of ESAPI.

Cool?

- Jim

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-esapi/attachments/20090311/ae983072/attachment.html 


More information about the OWASP-ESAPI mailing list