I think that the real issue needs to be adressed at the Servlet Spec level.
The portlet container itself is just delegating to the servlet request the isUserInRole(String roleName) method. The only issue today I see with portlet container is that if the role is never specified in the portlet.xml then the portlet container will not make an access to the isUserInRole(String roleName) of the HttpServletRequest object provided at runtime. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4038596#4038596 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4038596 _______________________________________________ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
