The solution is a Diffie-Hellman based authentication protocol. I've implemented that a year ago for a customer who then
didn't want to pay for it. So it got never committed. Please contact me privately if you want to sponsor this
functionality on his behalf.
Am 01.11.2012 10:54, schrieb Jan Rosczak:
> I need a way to access the user password on the CDO server and figured I could use some kind of public/private key
> magic to not transmit a plain password.
> My problem is that on the server side I need to extend the SessionManager (override the authenticateUser method
> basically), but this is prohibited because SessionManager is an internal class.
> I have not looked on the client side, maybe there exists a similar problem.
> What can I do about it? I do not want do duplicate the SessionManager and Session classes just to be able to change
> the implementation of one method.