I had the same problem. All you have to do is upon role update, Flush the JAASSecurityManger's cache. This will force the the principal to go through the login module again, populating all the new roles.
View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3838731#3838731 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3838731 ------------------------------------------------------- This SF.Net email is sponsored by The 2004 JavaOne(SM) Conference Learn from the experts at JavaOne(SM), Sun's Worldwide Java Developer Conference, June 28 - July 1 at the Moscone Center in San Francisco, CA REGISTER AND SAVE! http://java.sun.com/javaone/sf Priority Code NWMGYKND _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user