What I meant was how to write an in-container test for an EJB annotated with @RolesAllowed. How can I programatically log in and create the EJB session with the roles returned from Keycloak?