Hi!
I have a timer in my application that access a method in a stateless session bean. If the session bean method uses the @PermitAll annotation everything works fine. But since the same method is used from clients I want it to be secured with a @RolesAllowed({"owner"}). Then i use
@RunAs("owner") in the timer butI allways get a security exception when the session bean method is called. Anybody know if this is a bug or if I am missing something.