i meant to say is that if i login as non "admin" user i am not getting any error ( as i expected ) when i call the method that is annotated as @RolesAllowed("admin"). it simply allows the method to be called.
Reply to this message by going to Community
Start a new discussion in EJB3 at Community