Can you add an @DecalreRoles annotation, because this is required for isCallerInRole checks.
@DeclareRoles :
Defines roles for security checking. To be used by EJBContext.isCallerInRole, HttpServletRequest.isUserInRole, and WebServiceContext.isUserInRole.
[Message sent by forum member 'kumarjayanti' (kumarjayanti)]