Hi everybody, <div><br></div><div>I&#39;m trying to migrate an existing application to keycloak and I&#39;m facing some problems.</div><div>My application is an ear composed of :</div><div>- one war containing Servlet and JaxRS resources (which are not session beans but only rest resources calling EJBs)</div><div>- one jar containing EJB components secured with a dedicated SecurityDomain.</div><div>-one HTML5/Angular client application</div><div><br></div><div>I&#39;ve configured the security domain in standalone-full.xml using the KeycloakLoginModule .</div><div>I&#39;ve also configured the war using jboss-web.xml to use the security domain of EJBs</div><div>Finally I&#39;ve include the JAX-RS filter in order to allows BearerToken authentication on the REST api in the WAR.</div><div><br></div><div>Angular application is able to loggin and to send the bearer token in the http header. The jaxRS logs shows that token is received and user name is retreive.</div><div>What happens is that authentication is not propagated to the EJB Layer and the LoginModule is never called.</div><div><br></div><div>Anybody has an idea on how to make this propagation works ?</div><div><br></div><div>Thanks for your help, best regards, Jérôme.</div>