I think taking care of the IdentityAssertion option in the authenticator fixed part of my problem.
If IdentityAssertion I return before to call commitUserAuthentication.
But I think I have another problem possibly related to impersonation.
I will start a new thread on this other problem.
VD
From: Vincent Deschênes [mailto:vdeschenes_at_stelvio.com]
Sent: Monday, February 01, 2010 11:13 PM
To: users_at_glassfish.dev.java.net
Subject: RE: JACC Intermittent problem
>>It looks like you are using a custom JDBC realm.
>>Do you expect the realm to add a principal with name "username"?
Yes we are using a custom realm, it is not expected to add more than one principal.
But looking at the code I might have found the problem,
commitUserAuthentication() is always called (after validating password), even when isIdentityAssertion is true.
I will correct that and I will soon know if that is the problem.
VD