I'm new to acegi. I've read the reference guide, and I'm now plowing through the contacts sample in hopes of figuring out how to get basic security (with some ACL rules in the future) setup.
I pretty much understand the ACL stuff in general, but I can't figure out how the app is doing the login of the users.
Nowhere that I can tell in the source is there a DAO that grabs the users from the USERS table. I don't even see a reference to the principles in the app context xml files.
Basically I'm just trying to start with a simple login page.
I'm using hibernate and already have a User domain object.
I have no problem using the base JDBCDao stuff for ACL, but is it doing some magic to authenticate the users in the sample app as well?
Really just need a stripped down explanation of how the sample app is handling the basic act of authentication without all the other authorization stuff.