9.6.2. About Picketbox
Picketbox is the foundational security framework that provides the authentication, authorization, audit and mapping capabilities to Java applications running in the JBoss Enterprise Application Platform. It provides the following capabilities, in a single framework with a single configuration:
- Section 9.6.5, “About Authorization” and access control
- Section 9.6.9, “About Security Mapping” of principals, roles, and attributes
The Picketbox configuration uses a mark-up language called eXtensible Access Control Markup Language (XACML).