[ https://issues.jboss.org/browse/CDI-99?page=com.atlassian.jira.plugin.sys... ] Mark Struberg commented on CDI-99: ---------------------------------- I'm a bit reluctant to giving end users full access to container Extensions. That might well cause security issues maybe (we have to think about that). So I got made aware that Extensions are already defined as being @ApplictionScoped. Thus everyone can inject and use them already. The only reason which speaks against doing this so atm is because the application context is only guaranteed to exist once the container is fully started. But we provide this already for injecting BeanManager, etc. We really should enumerate which things can get injected while booting. Maybe those Extension beans shall get remove after the container has been started? -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira