I have a custom login module which implements getRoleSets() method. For some reason, this method does not get called by JBoss Security interceptor so much so I get an exception principal=null on a call to ejb create(). This method is qualified bu unchecked permission element.
I have another example which uses as UserRolesLoginModule and that seems to work fine.
Would somebody know why the getRoleSets method would not get called.