got some problems with setting up user-principal to role mapping using client-cert authorization. how to set up Jboss (3.2 + tomcat) to use DN from X509 certificate.
without roles definition certificate is accepted but getUserPrincipal returns null. but i can read principal by X509Certificate class (so i have 'user name').
which login module i have to set up or how to define simple XML file (as in tomcat) to use DN field.