In fact, i create a custom realm that delegates user authentication to my legacy system.
I register this custom realm in glassfish b58g and set it as default realm but [b]i do not select (activate) the checkbox that enables the security manager [/b] ( through the admin console in Configuration > Security page).
I remark that even if the security manager is not activated, the realm (my custom one) is called to perform user authentication. So i would like to known if it is a normal behaviour in Glassfish Application Server.
Franck.
[Message sent by forum member 'franck_mosse' (franck_mosse)]
http://forums.java.net/jive/thread.jspa?messageID=260981