I'm seeing exactly the same problem, though I am still using jboss-3.2.3. Have you made any progress on this?
I had TRACE logging enabled for 'org.jboss.ejb.plugins' and saw the following pass by: | 2005-02-17 15:05:51,540 TRACE [SecurityInterceptor] Authenticated principal=null | In the source code of org.jboss.ejb.EnterpriseContext.EJBContextImpl (3.2.3), I found: | // TODO - how to handle this best? | public boolean isCallerInRole(String id) | { | if (principal == null) | return false; | .... | Probably related, no? View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3866933#3866933 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3866933 ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user