If you're invoking a restricted method and the credentials are set (which is what the AuthenticationFilter does) then a silent login will automatically occur, with no need to explicitly call Identity.authenticate(). Digest authentication is a special case, with a special type of authenticator. You have to keep in mind that the request may be for an unsecured resource, for which authentication may not be required. If that is the case then you don't want to be prompting the user for their username and password.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4125348#4125348 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4125348 _______________________________________________ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user