We use jboss 6M2 in our current project, and we stucked now with the JAAS logout. The loginmodule's logout method invoked properly but when we try to clear or remove the existing principals, we always get exception which says :
javax.security.auth.login.LoginException: java.lang.IllegalStateException: Subject is read-only
Somebody knows a solution for this issue? how can I set the subject to writable?
+1 important info: we don't use security manager at all...
Thx in advance,
in the meantime we updated the server instance to Jboss AS 6 final, I did not experience the problem above anymore...