3 Replies Latest reply on Aug 4, 2004 10:16 AM by Rolf Arne Corneliussen

    JaasSecurityManager and caching of X509Certificate chains

    Rolf Arne Corneliussen Newbie


      I have a Login module that I use with SSL client certificates. The log from the module suggests that it is invoked by the JaasSecurityManager on every client call, even when the client (and principal) is previously authenticated, and the principal is in the cache. Other username/password based modules do not show this behavior.

      My guess is that it is the validateCache method of the JaasSecurityManager that fails to match the credentials, which are X509Certificate arrays.

      What is the best way to get around this? Is it as simple as to change validateCache so that is can compare arrays of X509Certificates?