Can someone explain to me how the security credentials (Subject/Principal etc) are set on the HttpServletRequest object with respect to J2EE/JAAS? For example, most app servers use JAAS login modules to connect into an LDAP/Database. But once that authentication is done, how are those object populated into hte HttpServletRequest, so when I call request.getUserPrincipal I get the correct objects back.
Thanks View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3861066#3861066 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3861066 ------------------------------------------------------- The SF.Net email is sponsored by: Beat the post-holiday blues Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek. It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
