I am using JAAS based security with the DatabaseServerLoginModule.

Its works nicely.

1----------> I would like to be able to provide my own DatabaseServerLoginModule or have some means of getting my own principal object returned from HttpServletRequest.getUserPrincipal(). I would like this principal object to contain additional methiods like getPreferredCss() and so on. How do I do this?

2------------>Alternatively how can I detect that a user has logged on?

3)-----------> How can I have checkboxes on my login page to remember/forget username/password? I need to some code I can extend or whatever and add the cookie handling logic there.