I am trying to use a custom login module on the server for EJB authentication. However, on the client side I tried to use the ClientLoginModule which ofcourse does not authenticate but just prepares for future EJB invocations. As a result, caller authentication does not
happen until an EJB invocation.
What is the best way to actually get a handle to the user identity that has been actually authenticated on the server side on the client side ? Essentially, the client needs to know "whoami" and
also the roles that the user is associated with, so that certain menus can be enabled/disabled for that user.
How is this problem typically addressed ? What am I missing ?
Any ideas/suggestions most appreciated.
Did you find anything out on this issue?