We are working on an SOA solution using the JBoss Application Server. As of now, we use LDAP as our Identity Store and use a very basic and rudimentary authentication scheme. Currently we are considering the PicketLink Project for Authentication and Authorization needs. The need is also for an SSO approach. But the project seems to target web applications alone. Has there been any research on how non-browser applications can use the system in addition to the browser clients (we need both)? Please let us know if we can use/extend the current implementation to support the above.