Thanks Valdimir. It is a SecurityException being thrown by the new security layer, not an application exception coming from the bean. I'm not wrapping the exception correctly when it occurs in the security proxy layer. > Look at the table EJB 12-1 in section 12.3.1 of EJB spec 1.1 for clues on how >container should handle exceptions in CMT. > > For some reason container thinks that exception thrown from your bean method is NOT >AppException therefore it discards the instance > and marks transaction for rollback and throws TransactionRollbackException back to >your client - all according to spec. > > Did you declare in your remote interface that your bean method throws >org.jboss.test.security.test.NamespacePermission ? > > HTH, > Vladimir > >
