[jboss-user] [Security & JAAS/JBoss] - Why AbstractServerLoginModule.logout is not removing added r