Have you added @org.jboss.ejb3.annotation.SecurityDomain on the EJB?
No, I didn't have. Now I added that annotation and it seems to work.
So the jboss.xml isn't evaluated any more?
I don't like it having jboss specific annotations in my code. Is there a way to tell it in a cofiguration file, as before in the jboss.xml?
We'll add support for jboss.xml in the upcoming releases.
With the @SecurityDomain I can access the caller principal. I don't use ajax.
I made a simple sample application to explain my problam and it worked.
Now a got to find whats diferent in my production application.
When I find the problem i'll post it for the community