EJB3 role mapping could lead to wrong role ------------------------------------------ Key: EJBTHREE-1196 URL: http://jira.jboss.com/jira/browse/EJBTHREE-1196 Project: EJB 3.0 Issue Type: Bug Affects Versions: AS 4.2.2.GA Reporter: Roland Räz In the class org.jboss.ejb3.BaseSessionContext in the method isCallerInRole(String roleName) the security role references are resolved repeated but the mapping should be terminated after the first match. Consider the following mappings that would be handled in the given order. The current implementation would resolve the mapping for role A to C but it should be B. A -> B B -> C -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira