Just a couple things to mention:
1) you can ask the server to give you an agent installer with the passwords encrypted. If
you pass in "encryption-key" when you ask for the installer the passwords in the
installer config file will be encrypted (weakly, but still encrypted - its more than
obfuscation) so you can pass around the installer jar without having the passwords inside
it in clear text. You have to remember to pass that same encryption key to the installer
when you install (using --encryption-key cmdline option)
2) The installer will default its wildfly-home to the current working directory if you
don't give it one. That way, you can copy the installer jar right to a wildfly home
location, run "java -jar installar.jar" without specifying --wildfly-home and it
will use the wildfly home it is living in.