After login to Wildfly v26 with OIDC connector I get org.wildfly.security.http.oidc.OidcSecurityContext as http request attribute and I can see an authenticated user name and the roles.
However EJB sees it as anonymous user: When I inject @Resource SessionContext in Stateless bean, sessionContext.getCallerPrincipal() is returned as org.wildfly.security.auth.principal.AnonymousPrincipal. Keycloak adapter used to return a KeycloakPrincipal with full info.
Any other configuration needed to propagate security to EJB level?