Remoting login module's certificate propagation uses the old certificate API but should be using the new API instead -------------------------------------------------------------------------------------------------------------------- Key: WFLY-6304 URL: https://issues.jboss.org/browse/WFLY-6304 Project: WildFly Issue Type: Bug Components: Security Affects Versions: 10.0.0.Final Reporter: Ivo Studensky Assignee: Ivo Studensky Labels: deprecated RemotingLoginModule propagates javax.security.cert.X509Certificate but should use the newer API java.security.cert.X509Certificate. David proposed the following: The problem is at org.jboss.as.security.remoting.RemotingLoginModule line 126: session.getPeerCertificateChain() is called where session.getPeerCertificates() should be.