Details
Description
With a web app with security, that calls an ejb, isCallerInRole in the ejb always returns false.
this is caused by the web app not setting nextCaller and the ejb interceptors shifting nextCaller to currentCaller, so when the isCallerInRole is tested there is a null subject.... so it returns false.