JBoss.orgCommunity Documentation
SPI contains IdentityObjectCredential and IdentityObjectCredentialType interfaces that correspons to Credential and CredentialType interfaces in the API. Implementation supports the same two (PASSWORD and BINARY) types. Management operations are exposed in IdentityStore interface. Each IdentityObjectType can be configured to support different IdentityObjectCredentialType. This information is exposed by FeaturesMetaData interface.
IdentityObjectCredential interface exposes two methods to retrieve credential value:
getValue - returns either String for text based credentials or byte[] for binary. True credential value may be needed by different IdentityStore implementations for validation. For example with LDAP authentication for IdentityObject entry will be performed
getEncodedValue - Enables to provide IdentityStore with custom credential encoding method. IdentityStore is not obligated to use encoded value. This should return either String for text based credentials or byte[] for binary. May return null if credential implementation doesn't provide encoding mechanism. IdentityStore