Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[jaspic-dev] question about content of upcoming jakarta security specs

Hi folks, I'm trying to do some planning / sizing for implementation of the upcoming Jakarta security specs.  For the most part, this isn't a problem, but I have a question about the content of the Jakarta Security 3.0 spec:

https://jakarta.ee/specifications/security/3.0/

There are some vaguely described bullets there such as "OAuth2" under "Additional authentication mechanism", or "Multiple authentication mechanisms (try JWT, fallback to BASIC, etc)" under "Extended authentication mechanisms".  In addition, there's not much information under the CDI and Features sections.  None of those bullets have a link to issues or PRs.

My question is, are we still looking at including some of those bullets into the upcoming specification, and if so, will there be issues with more details to help plan?  Or, alternately, if these have fallen out of plan, could they be removed?  Doesn't matter to me either way, I'm just looking to understand what's planned for inclusion and what isn't.

Thanks in advance for your help!!

--Gary--

--
Gary R. Picher
WebSphere Security Architecture
707-1-H12
2455 South Road
Poughkeepsie, NY, 12601
Phone:  845-435-9409 (t/l 295-9409)


Back to the top