a solution could be to manage multi certificates with apache.
you better explain
You should distribute certificates to various clients so when you connect to the server apache check if they have a valid certificate or not.
If the certificate is not recognized you've forbitten
You should to install Apache + JBoss with mojk or modproxy
You view this url http://www.apacheweek.com/features/crl