No, the current security interface for the authentication contract does not throw an exception on failure. It simply provides a true/false response to the question of whether the user is authenticated. There should be an accessor for any exception information so that it can be propagated back to clients.
View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3843087#3843087 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3843087 ------------------------------------------------------- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_id=4721&alloc_id=10040&op=click _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user