http://jira.jboss.com/jira/browse/JBAS-3012

Currently the JaasSecurityManager caches the LoginContext associated with a principal, such that on a cache flush, the logout on the LC can be performed, giving an opportunity for the login modules to clean up/ finalize.

Since this caching is one of the causes for the memory leaks, just want to think about possibilities of removing the LC from the cache and able to derive the LC by other means (if available).