Ur login modules commit is only called when your jaas login process is successful. When the subject is retrieved from the cache, there is no jaas login and no login module lifecycle invoked.
It is possible that components in different security domains may be invoking the jaas login. Why don't you try to enable trace level loggng as outlined in the security faq (look at the beginning of this security forum). View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4000244#4000244 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4000244 _______________________________________________ jboss-user mailing list [email protected] https://lists.jboss.org/mailman/listinfo/jboss-user
