Hi Andrei, Sergei, thanks for your help. this has cleared things up for me. I implemented client-cert authentication (via http) using the cxf http transport and it works a treat. within the service implementation i can access the current user via the annotation. thanks again. Michael
-- View this message in context: http://cxf.547215.n5.nabble.com/utilizing-tomcat-authentication-for-webservices-tp5742376p5742473.html Sent from the cxf-user mailing list archive at Nabble.com.
