You need to also perform a client-side login with the ClientLoginModule to bind the user data to JBoss.
See the JBoss security article at
on how to do this.
i am doing that in client/auth.conf with the default as specified in the article. I forgot to mention that this code was written inside a jsp ..do i need to add any settings?
also whenever i run a stand alone java application as the client the module specified in client/auth.conf gets called but the module specified in tomcat/auth.conf doesnt get called(even when i lookup the home and call a method).It always throws an error when i do a getCallerPrincpal