diff --git a/demoiselle-security/src/main/java/org/demoiselle/jee/security/impl/SecurityContextImpl.java b/demoiselle-security/src/main/java/org/demoiselle/jee/security/impl/SecurityContextImpl.java
index 32957fd..c6864a7 100644
--- a/demoiselle-security/src/main/java/org/demoiselle/jee/security/impl/SecurityContextImpl.java
+++ b/demoiselle-security/src/main/java/org/demoiselle/jee/security/impl/SecurityContextImpl.java
@@ -51,9 +51,9 @@ public class SecurityContextImpl implements SecurityContext {
     @Override
     public boolean hasRole(String role) {
         if (tm.getUser().getRoles().parallelStream().filter(p -> p.equals(role)).count() <= 0) {
-            return true;
+            return false;
         }
-        return false;
+        return true;
     }
 
     /**
diff --git a/demoiselle-security/src/main/java/org/demoiselle/jee/security/interceptor/RequiredPermissionInterceptor.java b/demoiselle-security/src/main/java/org/demoiselle/jee/security/interceptor/RequiredPermissionInterceptor.java
index f2ad807..1db476d 100644
--- a/demoiselle-security/src/main/java/org/demoiselle/jee/security/interceptor/RequiredPermissionInterceptor.java
+++ b/demoiselle-security/src/main/java/org/demoiselle/jee/security/interceptor/RequiredPermissionInterceptor.java
@@ -77,7 +77,7 @@ public class RequiredPermissionInterceptor implements Serializable {
             logger.finest(bundle.accessCheckingPermission(username, operation, resource));
         }
 
-        if (securityContext.hasPermission(resource, operation)) {
+        if (!securityContext.hasPermission(resource, operation)) {
             logger.severe(bundle.doesNotHavePermission(username, operation, resource));
             throw new DemoiselleSecurityException(bundle.doesNotHavePermission(username, operation, resource), Response.Status.UNAUTHORIZED.getStatusCode());
         }
--
libgit2 0.21.2