trajano
diff --git a/‎README.md
+8 b/‎README.md
+8
diff --git a/‎entrust-truepass-jaspic/src/main/java/net/trajano/entrust/jaspic/EntrustTruePassAuthModuleConfigProvider.java
-2 b/‎entrust-truepass-jaspic/src/main/java/net/trajano/entrust/jaspic/EntrustTruePassAuthModuleConfigProvider.java
-2
diff --git a/‎entrust-truepass-jaspic/src/main/java/net/trajano/entrust/jaspic/EntrustTruePassJaspicModule.java
+161-145 b/‎entrust-truepass-jaspic/src/main/java/net/trajano/entrust/jaspic/EntrustTruePassJaspicModule.java
+161-145
diff --git a/‎entrust-truepass-jaspic/src/main/java/net/trajano/entrust/jaspic/EntrustTruePassServletContextInitializer.java
+6-5 b/‎entrust-truepass-jaspic/src/main/java/net/trajano/entrust/jaspic/EntrustTruePassServletContextInitializer.java
+6-5
diff --git a/‎entrust-truepass-jaspic/src/main/java/net/trajano/entrust/jaspic/internal/ServerAuthModuleAuthConfig.java
+5-11 b/‎entrust-truepass-jaspic/src/main/java/net/trajano/entrust/jaspic/internal/ServerAuthModuleAuthConfig.java
+5-11
@@ -0,0 +1,8 @@
+Entrust TruePass JASPIC implementation
+======================================
+
+This is a simplistic implementation of [HttpHeaderAuthModule](https://github.com/trajano/server-auth-modules/blob/master/src/main/java/net/trajano/auth/HttpHeaderAuthModule.java) from [Server Auth Modules](https://site.trajano.net/server-auth-modules/) which has been hard coded for Entrust TruePass implementations and uses Java EE 6 to support older versions of WebSphere Application Server.
+
+It provides a sample EAR and web app that can be deployed to WebSphere Application Server based on [Utility JSPs](https://github.com/trajano/util).
+
+This is implemented with [JASPIC embedded inside the application](https://trajano.net/2014/11/implementing-jaspic-in-the-application/).
@@ -8,8 +8,6 @@
 import javax.security.auth.message.config.AuthConfigProvider;
 import javax.security.auth.message.config.ClientAuthConfig;
 import javax.security.auth.message.config.ServerAuthConfig;
-import javax.security.auth.message.module.ClientAuthModule;
-import javax.security.auth.message.module.ServerAuthModule;
 
 import net.trajano.entrust.jaspic.internal.ServerAuthModuleAuthConfig;
 
 
@@ -32,149 +32,165 @@
  * 
  * @see https://trajano.net/2014/06/creating-a-simple-jaspic-auth-module/
  */
-public class EntrustTruePassJaspicModule implements ServerAuthModule, ServerAuthContext {
-
-	/**
-	 * Logger.
-	 */
-	private static final Logger LOG;
-
-	/**
-	 * Entrust HTTP Header.
-	 */
-	public static final String ENTRUST_HTTP_HEADER = "Entrust-Client";
-
-	static {
-		LOG = Logger.getLogger("net.trajano.entrust.jaspic");
-	}
-
-	/**
-	 * Callback handler that is passed in initialize by the container. This
-	 * processes the callbacks which are objects that populate the "subject".
-	 */
-	private CallbackHandler handler;
-
-	/**
-	 * Mandatory flag.
-	 */
-	private boolean mandatory;
-
-	/**
-	 * Does nothing.
-	 *
-	 * @param messageInfo
-	 *            message info
-	 * @param subject
-	 *            subject
-	 */
-	@Override
-	public void cleanSubject(final MessageInfo messageInfo, final Subject subject) throws AuthException {
-
-		// Does nothing.
-	}
-
-	/**
-	 * <p>
-	 * Supported message types. For our case we only need to deal with HTTP
-	 * servlet request and responses. On Java EE 7 this will handle WebSockets
-	 * as well.
-	 * </p>
-	 * <p>
-	 * This creates a new array for security at the expense of performance.
-	 * </p>
-	 *
-	 * @return {@link HttpServletRequest} and {@link HttpServletResponse}
-	 *         classes.
-	 */
-	@SuppressWarnings("rawtypes")
-	@Override
-	public Class[] getSupportedMessageTypes() {
-
-		return new Class<?>[] { HttpServletRequest.class, HttpServletResponse.class };
-	}
-
-	/**
-	 * Builds a list of groups from the request. This simply returns "users"
-	 *
-	 * @param req
-	 *            servlet request.
-	 * @return array of groups.
-	 */
-	private String[] groups(final HttpServletRequest req) {
-
-		return new String[] { "users" };
-	}
-
-	/**
-	 * {@inheritDoc}
-	 *
-	 * @param requestPolicy
-	 *            request policy, ignored
-	 * @param responsePolicy
-	 *            response policy, ignored
-	 * @param h
-	 *            callback handler
-	 * @param options
-	 *            options
-	 */
-	@Override
-	public void initialize(final MessagePolicy requestPolicy, final MessagePolicy responsePolicy,
-			final CallbackHandler h, @SuppressWarnings("rawtypes") final Map options) throws AuthException {
-
-		handler = h;
-		mandatory = requestPolicy.isMandatory();
-	}
-
-	/**
-	 * Return {@link AuthStatus#SEND_SUCCESS}.
-	 *
-	 * @param messageInfo
-	 *            contains the request and response messages. At this point the
-	 *            response message is already committed so nothing can be
-	 *            changed.
-	 * @param subject
-	 *            subject.
-	 * @return {@link AuthStatus#SEND_SUCCESS}
-	 */
-	@Override
-	public AuthStatus secureResponse(final MessageInfo messageInfo, final Subject subject) throws AuthException {
-
-		return AuthStatus.SEND_SUCCESS;
-	}
-
-	/**
-	 * {@inheritDoc}
-	 */
-	@Override
-	public AuthStatus validateRequest(final MessageInfo messageInfo, final Subject client, final Subject serviceSubject)
-			throws AuthException {
-
-		final HttpServletRequest req = (HttpServletRequest) messageInfo.getRequestMessage();
-		final HttpServletResponse resp = (HttpServletResponse) messageInfo.getResponseMessage();
-		try {
-			if (!mandatory && !req.isSecure()) {
-				return AuthStatus.SUCCESS;
-			}
-			if (!req.isSecure()) {
-				resp.sendError(HttpURLConnection.HTTP_FORBIDDEN, "An HTTPS connection is required");
-				return AuthStatus.SEND_FAILURE;
-			}
-			final String userName = Base64.decodeToString(req.getHeader(ENTRUST_HTTP_HEADER));
-			if (userName == null && mandatory) {
-				return AuthStatus.FAILURE;
-			} else if (userName == null && !mandatory) {
-				return AuthStatus.SUCCESS;
-			}
-
-			handler.handle(new Callback[] { new CallerPrincipalCallback(client, userName),
-					new GroupPrincipalCallback(client, groups(req)) });
-			return AuthStatus.SUCCESS;
-		} catch (final IOException e) {
-			LOG.throwing(this.getClass().getName(), "IOException was thrown on validateRequest()", e);
-			throw new AuthException(e.getMessage());
-		} catch (final UnsupportedCallbackException e) {
-			LOG.throwing(this.getClass().getName(), "UnsupportedCallbackException was thrown on validateRequest()", e);
-			throw new AuthException(e.getMessage());
-		}
-	}
+public class EntrustTruePassJaspicModule implements
+    ServerAuthModule,
+    ServerAuthContext {
+
+    /**
+     * Logger.
+     */
+    private static final Logger LOG;
+
+    /**
+     * Entrust HTTP Header.
+     */
+    public static final String ENTRUST_HTTP_HEADER = "Entrust-Client";
+
+    static {
+        LOG = Logger.getLogger("net.trajano.entrust.jaspic");
+    }
+
+    /**
+     * Callback handler that is passed in initialize by the container. This
+     * processes the callbacks which are objects that populate the "subject".
+     */
+    private CallbackHandler handler;
+
+    /**
+     * Mandatory flag.
+     */
+    private boolean mandatory;
+
+    /**
+     * Does nothing.
+     *
+     * @param messageInfo
+     *            message info
+     * @param subject
+     *            subject
+     */
+    @Override
+    public void cleanSubject(final MessageInfo messageInfo,
+        final Subject subject) throws AuthException {
+
+        // Does nothing.
+    }
+
+    /**
+     * <p>
+     * Supported message types. For our case we only need to deal with HTTP
+     * servlet request and responses. On Java EE 7 this will handle WebSockets
+     * as well.
+     * </p>
+     * <p>
+     * This creates a new array for security at the expense of performance.
+     * </p>
+     *
+     * @return {@link HttpServletRequest} and {@link HttpServletResponse}
+     *         classes.
+     */
+    @SuppressWarnings("rawtypes")
+    @Override
+    public Class[] getSupportedMessageTypes() {
+
+        return new Class<?>[] {
+            HttpServletRequest.class,
+            HttpServletResponse.class
+        };
+    }
+
+    /**
+     * Builds a list of groups from the request. This simply returns "users".
+     * This value must match the security-roles in web.xml
+     *
+     * @param req
+     *            servlet request.
+     * @return array of groups.
+     */
+    private String[] groups(final HttpServletRequest req) {
+
+        return new String[] {
+            "users"
+        };
+    }
+
+    /**
+     * {@inheritDoc}
+     *
+     * @param requestPolicy
+     *            request policy, ignored
+     * @param responsePolicy
+     *            response policy, ignored
+     * @param h
+     *            callback handler
+     * @param options
+     *            options
+     */
+    @Override
+    public void initialize(final MessagePolicy requestPolicy,
+        final MessagePolicy responsePolicy,
+        final CallbackHandler h,
+        @SuppressWarnings("rawtypes") final Map options) throws AuthException {
+
+        handler = h;
+        mandatory = requestPolicy.isMandatory();
+    }
+
+    /**
+     * Return {@link AuthStatus#SEND_SUCCESS}.
+     *
+     * @param messageInfo
+     *            contains the request and response messages. At this point the
+     *            response message is already committed so nothing can be
+     *            changed.
+     * @param subject
+     *            subject.
+     * @return {@link AuthStatus#SEND_SUCCESS}
+     */
+    @Override
+    public AuthStatus secureResponse(final MessageInfo messageInfo,
+        final Subject subject) throws AuthException {
+
+        return AuthStatus.SEND_SUCCESS;
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    @Override
+    public AuthStatus validateRequest(final MessageInfo messageInfo,
+        final Subject client,
+        final Subject serviceSubject)
+        throws AuthException {
+
+        final HttpServletRequest req = (HttpServletRequest) messageInfo.getRequestMessage();
+        final HttpServletResponse resp = (HttpServletResponse) messageInfo.getResponseMessage();
+        try {
+            if (!mandatory && !req.isSecure()) {
+                return AuthStatus.SUCCESS;
+            }
+            if (!req.isSecure()) {
+                resp.sendError(HttpURLConnection.HTTP_FORBIDDEN, "An HTTPS connection is required");
+                return AuthStatus.SEND_FAILURE;
+            }
+            final String userName = Base64.decodeToString(req.getHeader(ENTRUST_HTTP_HEADER));
+            if (userName == null && mandatory) {
+                return AuthStatus.FAILURE;
+            } else if (userName == null && !mandatory) {
+                return AuthStatus.SUCCESS;
+            }
+
+            handler.handle(new Callback[] {
+                new CallerPrincipalCallback(client, userName),
+                new GroupPrincipalCallback(client, groups(req))
+            });
+            return AuthStatus.SUCCESS;
+        } catch (final IOException e) {
+            LOG.throwing(this.getClass().getName(), "IOException was thrown on validateRequest()", e);
+            throw new AuthException(e.getMessage());
+        } catch (final UnsupportedCallbackException e) {
+            LOG.throwing(this.getClass().getName(), "UnsupportedCallbackException was thrown on validateRequest()", e);
+            throw new AuthException(e.getMessage());
+        }
+    }
 }
@@ -11,7 +11,7 @@ public class EntrustTruePassServletContextInitializer implements
     ServletContextListener {
 
     /**
-     * Registers the authentication modules. {@inheritDoc} 
+     * Registers the authentication modules. {@inheritDoc}
      */
     @Override
     public void contextInitialized(final ServletContextEvent sce) {
@@ -22,9 +22,10 @@ public void contextInitialized(final ServletContextEvent sce) {
     }
 
     /**
-     * Does nothing. {@inheritDoc} 
+     * Does nothing. {@inheritDoc}
      */
-	@Override
-	public void contextDestroyed(ServletContextEvent sce) {
-	}
+    @Override
+    public void contextDestroyed(ServletContextEvent sce) {
+
+    }
 }
@@ -1,23 +1,18 @@
 package net.trajano.entrust.jaspic.internal;
 
 import java.util.Map;
+import java.util.concurrent.ConcurrentHashMap;
 
 import javax.security.auth.Subject;
 import javax.security.auth.callback.CallbackHandler;
 import javax.security.auth.message.AuthException;
-import javax.security.auth.message.config.ServerAuthConfig;
-import javax.security.auth.message.config.ServerAuthContext;
-import javax.security.auth.message.module.ServerAuthModule;
-
-import java.util.Map;
-import java.util.concurrent.ConcurrentHashMap;
-
-import javax.security.auth.callback.CallbackHandler;
 import javax.security.auth.message.MessageInfo;
 import javax.security.auth.message.MessagePolicy;
 import javax.security.auth.message.MessagePolicy.TargetPolicy;
+import javax.security.auth.message.config.ServerAuthConfig;
+import javax.security.auth.message.config.ServerAuthContext;
+import javax.security.auth.message.module.ServerAuthModule;
 
-import net.trajano.entrust.jaspic.EntrustTruePassAuthModuleConfigProvider;
 import net.trajano.entrust.jaspic.EntrustTruePassJaspicModule;
 
 /**
@@ -115,8 +110,7 @@ public String getAppContext() {
      */
     public String getAuthContextID(final MessageInfo messageInfo) {
 
-        final Object isMandatory = messageInfo.getMap()
-            .get(JAVAX_SECURITY_AUTH_MESSAGE_MESSAGE_POLICY_IS_MANDATORY);
+        final Object isMandatory = messageInfo.getMap().get(JAVAX_SECURITY_AUTH_MESSAGE_MESSAGE_POLICY_IS_MANDATORY);
         if (isMandatory != null && isMandatory instanceof String && Boolean.valueOf((String) isMandatory)) {
             return messageInfo.toString();
         }