The REST/JSON API (http://openam.forgerock.org/openam-documentation/openam-doc-source/doc/webhelp/dev-guide/rest-api-auth-json.html) allows to initiate and complete authentication module over the REST queries by exposing the information about what kind of callbacks the authentication modules expects.
However, some attributes of the callbacks are not exposed, for example the "header" field. Some authentication modules use this field to display errors and other messages to the users via the DAUI interface and they use like that:
However, this "header" field is not shown when the authentication is executed over the REST/JSON API.
It seems that the LoginViewBean.java, which is used by DAUI is using the PagePropertiesCallback, which has getHeader() method, but the REST/JSON API only deals with the "regular" callbacks (http://docs.oracle.com/javaee/1.3/api/javax/security/auth/callback/Callback.html) ?