I'm aware it's not a webapp, but the purpose of the standard filters is to authenticate a remote client *to the server*. You presumably want to authenticate someone on the client machine to the client application so you want the acegi infrastructure on the client, configured to access whatever repository of security information you want to use. Of course this raises quite a few issues since the configuration information may be sensitive and would have to be secured on the client machine. But presumably this will be possible otherwise it wouldn't really be possible to secure the app in the first place?
