Checks whether the authenticated caller is included in the specified logical
application "role".
If the caller is not authenticated, this always returns
false
.
This method can not be used to test for roles that are mapped to specific named Servlets or
named EJB beans. For a Servlet an example of this would be the role-name
nested in a
security-role-ref
element nested in a servlet
element in web.xml
.
Should code in either such Servlet or EJB bean wish to take such mapped (aka referenced, linked) roles into
account, the facilities for that specific container should be used instead. For instance for Servlet that would
be
HttpServletRequest#isUserInRole(String) and for EJB beans that would be
SessionContext#isCallerInRole(String).