"kaprys" wrote : what i would like to realize is authorization based on certificate used for wsse signature Ok, I guess you need the principal subject of the certificate, may be having the whole certificate that has been used to sign the message is even better. The best way I see to get this is getting it from the signature in the ws-security implementation and setting it into the context (or setting the principal in a security adaptor). Please create a JIRA issue with this feature request, so that we can eventually schedule it and work on it. Thank you View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4104651#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...