Review PropertiesFileLoginModule for potential violations and security risks.
At revision: 590807 http://svn.apache.org/viewvc?rev=590807&view=rev
o LoginModule should not add principals when login fails. Added a test to detect the same.
o Other changes to bring PropertiesFileLoginModule in line with http://java.sun.com/j2se/1.5.0/docs/guide/security/jaas/JAASLMDevGuide.html
**: This fix can use a thorough review.
I guess I am done with my review. Can someone review the code and tests in their current state and comment?