The fix for WFLY-4625 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with STS --------------------------------------------------------------------------------------------------------------- Key: WFLY-9731 URL: https://issues.jboss.org/browse/WFLY-9731 Project: WildFly Issue Type: Bug Components: Security Reporter: Petr Jurak Assignee: Pedro Igor Web service with STS (Picketlink) returns wrong subject with PolicyContext("javax.security.auth.subject.container"). It seems that configured login modules are not called since SecurityContext was created by SAML2Handler for the same security domain and are skipped because of WFLY-4625. Reproducer is attached in BZ-1352418.