In the previous chapter, we described how to manage your application server. The next stop in our journey will be learning about security, which is a key element of any Enterprise application. You must be able to control and restrict who is permitted to access your applications and what operations users may perform.

The Java Enterprise Edition specification defines a simple role-based security model for Enterprise JavaBeans and web components. The implementation of WildFly security is delivered by the Picketbox framework (formerly known as JBoss Security), which is part of the application server and provides the authentication, authorization, auditing, and mapping capabilities for Java applications.

Here ...