"gavin.king(a)jboss.com" wrote : As for the second problem, use your debugger to figure out what object is being serialized. As I see it, a javax.faces.application.FacesMessage.Severity is put into the session trough the call FacesMessages.instance().add("Welcome, #{user.name}"); in LoginAction. javax.faces.application.FacesMessage.Severity is not serializable and according to https://javaserverfaces.dev.java.net/issues/show_bug.cgi?id=111 it will not become serializable. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4005798#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...