javax.security.enterprise.SecurityContext.isCallerInRole throws NullPointerException if the caller is not authenticated (New Java EE 8 Security) ------------------------------------------------------------------------------------------------------------------------------------------------ Key: WFLY-11130 URL: https://issues.jboss.org/browse/WFLY-11130 Project: WildFly Issue Type: Bug Components: Security Affects Versions: 14.0.1.Final Reporter: Instantiation Exception Priority: Major I tried to use new Java EE 8 Security API and noticed that javax.security.enterprise.SecurityContext.isCallerInRole throws NullPointerException if the caller is not authenticated. But according to JavaDoc it should return false in this situation.