Description of problem: SecurityContextAssociation.getSecurityContext().getSubjectInfo().getRoles() returns the user's roles on the initial login, but if you refresh you get null. All subsequent calls will return null. Version-Release number of selected component (if applicable): EAP 6.1 with SPNEGO setup with KERBEROS How reproducible: The JBoss Negotiation Toolkit (2.2.5)'s 3rd test calls uses this, so can be reproduced easily Steps to Reproduce: 1. setting up a SPNEGO environment with a KDC, JBoss with SPNEGO configured in security module and browser configured to do Kerberos negotiation 2. install JBoss Negotiation Toolkit 2.2.5 3. log in 4. navigating to the 3rd test (which succeeds) 5. refresh and get a NullPointerException on subjectinfo.getRoles().getRoles() Actual results: SecurityContextAssociation.getSecurityContext().getSubjectInfo().getRoles() returns null which results in a NullPointerException with Jboss Negotiation Toolkit. Expected results: SecurityContextAssociation.getSecurityContext().getSubjectInfo().getRoles() returns user's roles. Additional info:
Since being raised almost one year ago this has not been proposed to be investigated / fixed in any release since - for that reason I am closing.