Review CertificatePropertiesFileLoginModule for potential violations and security risks.
I guess I am done with my review. Can someone review the code in the current state and comment?
At revision: 590862 http://svn.apache.org/viewvc?view=rev&revision=590862
o LoginModule should not add principals when login fails. Added a test to detect if it does.
o Other changes to bring CertificatePropertiesFileLoginModule in line with http://java.sun.com/j2se/1.5.0/docs/guide/security/jaas/JAASLMDevGuide.html
**: This fix can use a thorough review.
At revision: 590859 http://svn.apache.org/viewvc?rev=590859&view=rev
o Added tests to check normal login and bad logins