Chapter 15. Security

Authentication — an extensible, Java Authentication and Authorization Service (JAAS) based authentication layer that allows users to authenticate against any security provider.

Identity Management — an API for managing the users and roles of a Seam application at runtime.

Authorization — an extremely comprehensive authorization framework, supporting user roles, persistent and rule-based permissions, and a pluggable permission-resolver that makes it easy to implement customized security logic.

Permission Management — a set of built-in Seam components that make it easy to manage an application's security policy.

CAPTCHA support — to assist in the prevention of automated software/scripts abusing your Seam-based site.