This document describes the User Management API.
This API provides an implementation generic way of managing collections
of users, credentials and groups and associations between them. It
solves the problem of managing user stores independent of the store
implementation because in the J2SE/J2EE model it is left up to
implementation specific tools to manage the store.
The only redementary authentication and
authorization service is provided. Applications and application
servers provide their own interface for authenticating and authorization
a user. Adapter classes must be built for specific applications
and application servers to allow them to connect against this service.
Depending on the user store, many application servers may have
prebuilt auth services (such as LDAP).