Hello guys, I hope someone is willing to help me with my problem.

I'm currently developing a portal based on JBoss Portal, and have to use my own LoginModule for authentication because of some specific contraints to the authentication model.

My problem is that if I login using a LoginContext, this all works fine within the portlet I called the LoginContext on, but when I switch to another page or portlet, my subject is gone.

Subject mySubject = (Subject)PolicyContext.getContext("javax.security.auth.Subject.container");

Returns null after switching to antoher page.

What am I doing wrong?

In the beginning I solved this by putting the subject on the session and each time getting it from there for authorization, but I want to use the JBoss Portal CMS, so I have to use the default security model....

Can anyone help me with this?