There are tons of threads on this subject in the forum. If you are doing you own JAAS login in your servlet code, you will need to make sure that ClientLoginModule is part of the JAAS configuration you are using ("domain" according to your code below) for the propagation to happen.
But you also need to realize that you will have to do the JAAS login at every requests if you write it by yourself. It is much better to let the container do the authentication for you (using BASIC or FORM based authentication for your web app) as it will associate the security context with the HTTP session. Thomas View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3887775#3887775 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3887775 ------------------------------------------------------- SF.Net email is sponsored by: Discover Easy Linux Migration Strategies from IBM. Find simple to follow Roadmaps, straightforward articles, informative Webcasts and more! Get everything you need to get up to speed, fast. http://ads.osdn.com/?ad_id=7477&alloc_id=16492&op=click _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user