djencks wrote:
>
> I think that sending the server-side subject back to a client is apt
> to be more than a philosophical problem.
>
As I spoke philosophical problem, I had in mind that I have to deal with a
standalone client instead of a web application.
JAAS works very well in web-apps.
On Apr 23, 2008, at 11:16 PM, maho77 wrote:
djencks wrote:
Well, I kind of hope you can't get the server side Subject into your
client :-). Could I suggest that doing so might not be appropriate
from a security standpoint? You don't really know what other
sensitive info might have been
djencks wrote:
>
>
> Well, I kind of hope you can't get the server side Subject into your
> client :-). Could I suggest that doing so might not be appropriate
> from a security standpoint? You don't really know what other
> sensitive info might have been added to the Subject. Also, I
On Apr 22, 2008, at 6:45 AM, maho77 wrote:
Hello,
I have a standalone client, no jee-application client. Now I want
to login
to the server using JAAS, which works until now. But the only
principal I
get from the subject is a server principal. But I need all
GeronimoGroupPricipals and Gero
