Hi, I have a few questions concerning the client login module. 1) Java doc says "This simply sets the SecurityContext principal to the value of the NameCallback" How can I get to the "SecurityContext principal"? 2) Is this supposed to be used in container or from servlet or even from remote application? Is there some usage example? Thanks, Jan