This still is not telling me much. Why should the principal not be null, is there a security-constraint enforcing this? If there is not, you have to track the user in the session as there is no definition of how a principal propagates from secured to unsecured content. The only time request.getUserPrinicipal is guarenteed to return non-null is on secured content.
View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3837066#3837066 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3837066 ------------------------------------------------------- This SF.Net email is sponsored by: Oracle 10g Get certified on the hottest thing ever to hit the market... Oracle 10g. Take an Oracle 10g class now, and we'll give you the exam FREE. http://ads.osdn.com/?ad_id=3149&alloc_id=8166&op=click _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
