Custom Security Manager Plugin Tests SecureServlet org.jboss.test.web.servlets.SecureServletSecureEJB SecureServlet /SecureServlet/* Restricted Declarative security tests /* HEAD GET POST PUT DELETE Only authenticated users can access secure content Echo NONE BASIC JBossTest Servlets A user validated by an X-MyAuthentication Echo ejb/StatelessSession Session org.jboss.test.security.interfaces.StatelessSessionHome org.jboss.test.security.interfaces.StatelessSessionLocal