I've been tracking this issue for a couple weeks now, since having SSO int he programmatic web login classes would make the facility I wrote to pass user authentication over from a legacy portal application a lot easier. Obviously I can implement something like CAS instead, but what we have now will work perfectly as long as the SSO tokens get set. Thanks, ~Matt View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4096085#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...