Every http request runs in a separate thread. The SecurityAssociation of that thread can
be set via a filter(that is where you can get the user from the cookie and perform a JAAS
login or call SecurityAssociation.setPrincipal - i would do it through JAAS to ensure the
principal is pushed and popped in a stack). Your servlet should get this principal back
(using SecurityAssociation.getPrincipal) and set the MarshalledInvocation.
One possible reason why your servlet is not invoked could be the HttpInvoker has not been
configured to use your servlet. By default it uses the JMXInvokerServlet. One way to do it
is to specify that the invoker URL is in a System property on the client.
{Put your property name here}
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4048366#...
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...