yeah, i got the idea, it's like a 2-phase authentication where ClientLoginModule "does not perform client-side authentication, but simply binds the username and password to the JBoss EJB invocation layer for later authentication on the server".
2 johnv: skipping the details the only thing i did to make it work - i changed 1 code line as follows: LoginContext lc = new LoginContext( "client-login", handler ); i also removed "doAs"-call which i added just for testing, it works both ways. good luck. View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3865653#3865653 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3865653 ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
