during the development of the iOS contacts client  , came across the following issues
on the web interface. (Note: I am using edewit  branch that contains the Push
a) Login with “duke:duke" (role.MAINTAINER) and try to edit(PUT) an existing contact
you get back a 403-Forbidden message.
b) Login with “admin:admin (role.ADMIN) and try to delete(DELETE) an existing contact you
get back a 403-Forbidden message.
Interestingly enough, on the iOS client using the same credentials in the above scenarios,
they work correctly.. so possible(?) there are some issues on the web interface.
c) Logout on the web interface gives back a “Forbidden” message.
Tested on both wildfly-8.1.0.CR1 / CR2 and JBoss- EAP-6.2
Let me know if these are currently worked on or you want me to create JIRA’s.