What's the best way to re-login a user programmatically to the system after he changes his password? We need to do so because after changing user's password, all the back-end calls from web-tier to ejb-tier fail with invalid user-id/password error message. Also how can we force JBoss to refresh roles assigned to a logged-on user without forcing him to re-login again? Thanks, View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4152166#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...